Wednesday, August 9, 2017

IBM Security Bulletin: IBM Streams is affected by a XMLsoft Libxml2 vulnerability

The libxml2 library, used by IBM Streams, is potentially vulnerable to a memory corruption error. IBM Streams has addressed the applicable CVEs.

CVE(s): CVE-2016-4658

Affected product(s) and affected version(s):

The following versions may be impacted:

  • IBM Streams Version 4.2.1.1 and earlier
  • IBM InfoSphere Streams Version 4.1.1.4 and earlier
  • IBM InfoSphere Streams Version 4.0.1.4 and earlier
  • IBM InfoSphere Streams Version 3.2.1.6 and earlier
  • IBM InfoSphere Streams Version 3.1.0.8 and earlier
  • IBM InfoSphere Streams Version 3.0.0.6 and earlier

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2vNHXEZ
X-Force Database: http://ift.tt/2qnEQND

The post IBM Security Bulletin: IBM Streams is affected by a XMLsoft Libxml2 vulnerability appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2vNWlNd

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.