OpenSSL vulnerabilities were disclosed on October 30 2018 and November 2 2018 by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed the applicable CVE.
CVE(s): CVE-2018-0734, CVE-2018-5407
Affected product(s) and affected version(s):
Rational ClearQuest version 8 and 9 in the following components:
- ClearQuest hooks and cqperl/ratlperl scripts that use SSL.
- Database drivers configured to use SSL connections to the database.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10875402
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152085
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152484
The post IBM Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Rational ClearQuest (CVE-2018-0734, CVE-2018-5407) appeared first on IBM PSIRT Blog.
| Version | Status |
| 9.0.1 through 9.0.1.5 | Affected |
| 9.0 through 9.0.0.6 | Affected |
| 8.0.1 through 8.0.1.19 | Affected |
| 8.0 through 8.0.0.21 | Affected |
from IBM Product Security Incident Response Team https://ift.tt/2UVgPNR
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.