There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8.0 that is used by IBM Development Package for Apache Spark. These issues are disclosed as part of the IBM Java SDK updates in April 2017.
IBM Development Package for Apache Spark is providing an IBM Java SDK update that includes fixes for security vulnerabilities. If you run your own Java code using the IBM Java Runtime delivered with this product, you should evaluate your code to determine whether the complete list of vulnerabilities are applicable to your code.
CVE(s):
For a complete list of vulnerabilities, see the link for “IBM Java SDK Security Bulletin” located in the “References” section for more information.
Affected product(s) and affected version(s):
IBM Development Package for Apache Spark, v2.1.0.1, and earlier versions.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2rIUjgq
IBM Java SDK Bulletin: http://ift.tt/2q7C5TC
The post IBM Security Bulletin: IBM® Development Package for Apache Spark update of IBM® SDK Java™ Technology Edition appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2rJ3MnB
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.