InfoSphere Data Replication has addressed the following vulnerability: CVE-2018-10237 (Google Guava is vulnerable to a denial of service, caused by improper eager allocation checks in the AtomicDoubleArray and CompoundOrdering class. By sending a specially-crafted data, a remote attacker could exploit this vulnerability to cause a denial of service condition).
CVE(s): CVE-2018-10237
Affected product(s) and affected version(s):
InfoSphere Data Replication 11.4
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10870980
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142508
The post IBM Security Bulletin: InfoSphere Data Replication is affected by a Guava open source library vulnerability (CVE-2018-10237) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2NEIeAP
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.