A vulnerability has been addressed in the GSKit component of IBM Sterling Connect:Direct for UNIX. Further, OpenSSL vulnerabilities disclosed by the OpenSSL Project affect GSKit. IBM Sterling Connect:Direct for UNIX uses GSKit and therefore is also vulnerable.
CVE(s): CVE-2018-1427 , CVE-2017-3732 , CVE-2017-3736
Affected product(s) and affected version(s):
IBM Sterling Connect:Direct for Unix 4.2.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10726077
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139072
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/121313
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134397
The post IBM Security Bulletin: Vulnerabilities in GSKit affects IBM Sterling Connect:Direct for UNIX appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2w1JKpe
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.