Monday, September 25, 2017

IBM Security Bulletin: April 2016 Java Platform Standard Edition Vulnerabilities in N series Products

Share this post:

Multiple N series products incorporate the Oracle Java Platform, Standard Edition (Java SE) software libraries. Java SE (JDK and JRE) versions below 6u115, 7u101, and 8u92 are susceptible to multiple vulnerabilities, potentially leading to unauthenticated remote code execution, a partial denial of service (DoS) of Java, or unauthorized reading or modification of a subset of data accessible to the Java process.

CVE(s): CVE-2016-3443, CVE-2016-0687, CVE-2016-0686, CVE-2016-3427, CVE-2016-3449, CVE-2016-3425, CVE-2016-3422, CVE-2016-0695, CVE-2016-3426, CVE-2016-0636

Affected product(s) and affected version(s):

NS OnCommand Core Package: 5.2, 5.2R1, 5.2.1P1, 5.2.1P2;
Virtual Storage Console for VMware vSphere: 6.0, 6.1, 6.2;

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2xwNHli
X-Force Database: http://ift.tt/1Tg5v61
X-Force Database: http://ift.tt/1N2N2gY
X-Force Database: http://ift.tt/1Tg5wqC
X-Force Database: http://ift.tt/1N2N48r
X-Force Database: http://ift.tt/1N2N48x
X-Force Database: http://ift.tt/1UimkBV
X-Force Database: http://ift.tt/1Tg5wqE
X-Force Database: http://ift.tt/1PiN8MK
X-Force Database: http://ift.tt/1N2N2xe
X-Force Database: http://ift.tt/1Tg5v63



from IBM Product Security Incident Response Team http://ift.tt/2ynYugN

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.