There are multiple vulnerabilities with PCRE’s earlier versions which was used by IBM Aspera Shares Application.
CVE(s): CVE-2015-8380, CVE-2015-8381, CVE-2015-8382, CVE-2015-8383, CVE-2015-8384, CVE-2015-8385, CVE-2015-8386, CVE-2015-8387, CVE-2015-8388, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8392, CVE-2015-8393, CVE-2015-8394, CVE-2015-8395
Affected product(s) and affected version(s):
IBM Aspera Shares Application 1.9.2 or earlier
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2j4VSz5
X-Force Database: http://ift.tt/1OkXBfB
X-Force Database: http://ift.tt/2eD1myW
X-Force Database: http://ift.tt/24O3Mgh
X-Force Database: http://ift.tt/1OkXBfD
X-Force Database: http://ift.tt/2f1Hisw
X-Force Database: http://ift.tt/2akVqbx
X-Force Database: http://ift.tt/24O3JkA
X-Force Database: http://ift.tt/24O3JkC
X-Force Database: http://ift.tt/1OkXBfJ
X-Force Database: http://ift.tt/24O3LZZ
X-Force Database: http://ift.tt/1OkXBfx
X-Force Database: http://ift.tt/24O3Jkw
X-Force Database: http://ift.tt/1OkXDEb
X-Force Database: http://ift.tt/24O3Mgf
X-Force Database: http://ift.tt/1OkXBfH
X-Force Database: http://ift.tt/2eD5cbb
The post IBM Security Bulletin: Multiple vulnerabilities with the open source Perl Compatible Regular Expression (PCRE) libraries used in IBM Aspera Shares Application appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2BmTytY