IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Rational Synergy

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 6 Service Refresh 16 Fix Pack 50 and earlier releases used by IBM Rational Synergy. These issues were disclosed as part of the IBM Java SDK updates in October 2017 and January 2018.

CVE(s): CVE-2017-10295, CVE-2017-10356, CVE-2018-2603, CVE-2018-2633, CVE-2018-2579

Affected product(s) and affected version(s):

IBM Rational Synergy 7.2.1 – 7.2.1.6.x
IBM Rational Synergy 7.2.0 – 7.2.0.7.x

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg22015161
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/133729
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/133785
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137855
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137885
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137833

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Rational Synergy appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2JjTEYj