SymmetricalDataSecurity: IBM Security Bulletin: IBM InfoSphere Change Data Capture is affected by a Jackson 2.3.3 and 2.4.4 open source library vulnerabilities

Saturday, March 2, 2019

IBM Security Bulletin: IBM InfoSphere Change Data Capture is affected by a Jackson 2.3.3 and 2.4.4 open source library vulnerabilities

IBM Data Replication has addressed the following vulnerabilities: CVE-2017-17485 CVE-2018-5968 CVE-2017-15095 CVE-2017-7525 CVE-2018-7489

CVE(s): CVE-2017-17485, CVE-2018-5968, CVE-2017-15095, CVE-2017-7525, CVE-2018-7489

Affected product(s) and affected version(s):
InfoSphere Data Replication 11.4

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10870976
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137340
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/138088
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/135123
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134639
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139549

The post IBM Security Bulletin: IBM InfoSphere Change Data Capture is affected by a Jackson 2.3.3 and 2.4.4 open source library vulnerabilities appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2GVDNRF

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)