Multiple N series products incorporate the Oracle Java Platform, Standard Edition (Java SE) software libraries. Java SE (JDK and JRE) versions below 6u122, 7u112, 8u103 are susceptible to multiple vulnerabilities, potentially leading to a takeover of Java or to the unauthorized reading or modification of a subset or all of the data accessible to the Java process. Multiple N Series Products have addressed the applicable CVEs.
CVE(s): CVE-2016-5582, CVE-2016-5568, CVE-2016-5556, CVE-2016-5573, CVE-2016-5597, CVE-2016-5554, CVE-2016-5542
Affected product(s) and affected version(s):
N series OnCommand Core Package: 5.2, 5.2.1;
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=ssg1S1011818
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118069
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118068
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118067
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118070
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118071
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118072
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118073
The post IBM Security Bulletin: October 2016 Java Platform Standard Edition Vulnerabilities in Multiple N Series Products appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2FLOLVe
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.