IBM Netezza Host Management is affected by the vulnerabilities known as Intel Microarchitectural Data Sampling (MDS). There are Microarchitectural (hardware) implementation issues that could allow an unprivileged local attacker to bypass conventional memory security restrictions in order to gain read access to privileged memory that would otherwise be inaccessible.
CVE(s): CVE-2019-11091, CVE-2018-12130, CVE-2018-12127, CVE-2018-12126, CVE-2019-11478, CVE-2019-11477, CVE-2019-11479, CVE-2019-3896
Affected product(s) and affected version(s):
- IBM Netezza Host Management 5.4.9.0 – 5.4.24.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10964466
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160993
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160992
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160991
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160990
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162664
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162662
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162665
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162709
The post IBM Security Bulletin: IBM Netezza Host Management is affected by the vulnerabilities known as Intel Microarchitectural Data Sampling (MDS) and other Kernel vulnerabilities appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2L0DHHT
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.