The libxml2 library, used by IBM Streams may have security vulnerabilities. IBM Streams has addressed the applicable CVEs.
CVE(s): CVE-2017-9050, CVE-2017-9049, CVE-2017-9048, CVE-2017-9047, CVE-2017-8872
Affected product(s) and affected version(s):
The following versions may be impacted:
- IBM Streams Version 4.2.1.2 and earlier
- IBM InfoSphere Streams Version 4.1.1.4 and earlier
- IBM InfoSphere Streams Version 4.0.1.4 and earlier
- IBM InfoSphere Streams Version 3.2.1.6 and earlier
- IBM InfoSphere Streams Version 3.1.0.8 and earlier
- IBM InfoSphere Streams Version 3.0.0.6 and earlier
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2xt5zwn
X-Force Database: http://ift.tt/2zTbKLZ
X-Force Database: http://ift.tt/2xss7xw
X-Force Database: http://ift.tt/2zTW76Y
X-Force Database: http://ift.tt/2xsm3Vr
X-Force Database: http://ift.tt/2zTADHi
The post IBM Security Bulletin: IBM Streams may be affected by XMLsoft Libxml2 vulnerabilities appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2xt221g
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.