May 19, 2017 10:02 am EDT
Categorized: Medium Severity
Vulnerabilities in Network Security Services (NSS) component affect the IBM SAN Volume Controller, Storwize Family and FlashSystem V9000 products. Though the CVE descriptions below document the vulnerabilities in the context of the Mozilla product, the IBM SAN Volume Controller, Storwize Family and FlashSystem V9000 products have resolved the vulnerabilities in the context in which the underlying NSS service is used by these products. The applicable CVEs are CVE-2016-1938 and CVE-2016-9074 .
CVE(s): CVE-2016-1938, CVE-2016-9074
Affected product(s) and affected version(s):
IBM SAN Volume Controller
IBM Storwize V7000
IBM Storwize V5000
IBM Storwize V3700
IBM Storwize V3500
IBM FlashSystem V9000
All products are affected when running supported releases 7.1 to 7.6. For unsupported versions of the above products, IBM recommends upgrading to a fixed, supported version of the product.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ryRlaL
X-Force Database: http://ift.tt/2rlQsVC
X-Force Database: http://ift.tt/2ryTPpv
from IBM Product Security Incident Response Team http://ift.tt/2rlG8gu
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.