The libxml2 library, used by IBM Streams, is potentially vulnerable to a memory corruption error. IBM Streams has addressed the applicable CVEs.
CVE(s): CVE-2016-4658
Affected product(s) and affected version(s):
The following versions may be impacted:
- IBM Streams Version 4.2.1.1 and earlier
- IBM InfoSphere Streams Version 4.1.1.4 and earlier
- IBM InfoSphere Streams Version 4.0.1.4 and earlier
- IBM InfoSphere Streams Version 3.2.1.6 and earlier
- IBM InfoSphere Streams Version 3.1.0.8 and earlier
- IBM InfoSphere Streams Version 3.0.0.6 and earlier
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2vNHXEZ
X-Force Database: http://ift.tt/2qnEQND
The post IBM Security Bulletin: IBM Streams is affected by a XMLsoft Libxml2 vulnerability appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2vNWlNd
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.