IBM Security Bulletin: Multiple Samba vulnerabilities affect IBM Spectrum Protect Plus (CVE-2018-1139, CVE-2018-1140, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919)

There are multiple security vulnerabilities in Samba that affect IBM Spectrum Protect Plus. These vulnerabilities may result in potential information disclosure, denial of service, or execution of arbitrary code on the system.

CVE(s): CVE-2018-1139, CVE-2018-1140, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919

Affected product(s) and affected version(s):
IBM Spectrum Protect Plus versions 10.1.0 through 10.1.2.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10796402
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148707
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148706
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148710
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148709
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148708

The post IBM Security Bulletin: Multiple Samba vulnerabilities affect IBM Spectrum Protect Plus (CVE-2018-1139, CVE-2018-1140, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2NtUxQg