Wednesday, May 31, 2017

IBM Security Bulletin: IBM Security Access Manager appliances may be affected by a kernel vulnerability known as the Dirty COW bug (CVE-2016-5195)

Linux Kernel could allow a local attacker to gain elevated privileges on the system, caused by a race condition when handling the copy-on-write (COW) breakage of private read-only memory mappings by the memory subsystem. This vulnerability is known as the Dirty COW bug. Under certain circumstances, IBM Security Access Manager appliances might be affected by this vulnerability.

CVE(s): CVE-2016-5195

Affected product(s) and affected version(s):

IBM Security Access Manager for Web 7.0 appliances, all firmware versions.

IBM Security Access Manager for Web 8.0 appliances, all firmware versions.

IBM Security Access Manager for Mobile 8.0 appliances, all firmware versions.

IBM Security Access Manager 9.0 appliances, all firmware versions.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2smhIQW
X-Force Database: http://ift.tt/2gQ8nw9

The post IBM Security Bulletin: IBM Security Access Manager appliances may be affected by a kernel vulnerability known as the Dirty COW bug (CVE-2016-5195) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2smtVVE

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.