SymmetricalDataSecurity: IBM Security Bulletin: Vulnerabilities in cURL component shipped with IBM Rational ClearCase (CVE-2018-1000005, CVE-2018-1000007)

Tuesday, May 1, 2018

IBM Security Bulletin: Vulnerabilities in cURL component shipped with IBM Rational ClearCase (CVE-2018-1000005, CVE-2018-1000007)

IBM Rational ClearCase is affected by cURL/libcURL vulnerabilities.

CVE(s): CVE-2018-1000007, CVE-2018-1000005

Affected product(s) and affected version(s):

The cURL component is used in the CMI integration, the OSLC-based ClearQuest integration, and in the automatic view client.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg22014495
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/138218
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/138219

The post IBM Security Bulletin: Vulnerabilities in cURL component shipped with IBM Rational ClearCase (CVE-2018-1000005, CVE-2018-1000007) appeared first on IBM PSIRT Blog.

ClearCase client version	Status
9.0.1 through 9.0.1.2	Affected
9.0 through 9.0.0.6	Affected
8.0.1 through 8.0.1.16	Affected
8.0 through 8.0.0.21	Affected

from IBM Product Security Incident Response Team https://ift.tt/2rcGGTM

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)