IBM Security Bulletin: Multiple vulnerabilities in apache2 affect IBM Flex System Manager (FSM)

Multiple vulnerabilities have been identified in apache2 that is embedded in the FSM. This bulletin addresses these vulnerabilities.

CVE(s): CVE-2017-3167, CVE-2017-7668, CVE-2017-3169, CVE-2017-9798, CVE-2017-7679

Affected product(s) and affected version(s):

Flex System Manager 1.3.4.2
Flex System Manager 1.3.4.1
Flex System Manager 1.3.4.0
Flex System Manager 1.3.3.2
Flex System Manager 1.3.3.1
Flex System Manager 1.3.3.0
Flex System Manager 1.3.2.3
Flex System Manager 1.3.2.2
Flex System Manager 1.3.2.1
Flex System Manager 1.3.2.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=isg3T1027358
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127416
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127419
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127417
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/132159
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127420

The post IBM Security Bulletin: Multiple vulnerabilities in apache2 affect IBM Flex System Manager (FSM) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2J7RYkg