Medium Severity

IBM Security Bulletin: Fabric OS firmware for Brocade 8Gb SAN Switch Module for BladeCenter is affected by vulnerabilities in OpenSSL and OpenSSH

Share this post:

Fabric OS firmware for Brocade 8Gb SAN Switch Module for BladeCenter has addressed the following vulnerabilities in OpenSSL and OpenSSH.

CVE(s): CVE-2016-8858, CVE-2016-6306, CVE-2016-6303, CVE-2016-6302, CVE-2016-2182, CVE-2016-2178, CVE-2016-2109, CVE-2016-2107, CVE-2016-2106, CVE-2016-2105, CVE-2014-3570, CVE-2014-3567, CVE-2014-3513, CVE-2014-0198

Affected product(s) and affected version(s):

Product

Affected Version

Fabric OS firmware for Brocade 8Gb SAN Switch Module 7.4

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10887855
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118127
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/117112
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/117023
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/117024
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/116342
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/113889
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/112857
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/112854
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/112856
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/112855
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/99710
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/97036
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/97035
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/93000

More stories

IBM Security Bulletin: Multiple vulnerabilities in Jetty affect Netcool Agile Service Manager (CVE-2019-10247, CVE-2019-10246)

Jul 19, 2019 9:02 am EDT | Medium Severity

There are multiple vulnerabilities in Eclipse Jetty used by Netcool Agile Service Manager. Netcool Agile Service Manager has addressed the applicable CVEs. CVE(s): CVE-2019-10247, CVE-2019-10246 Affected product(s) and affected version(s):Netcool Agile Service Manager 1.1.3 – 1.1.4 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10887913X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160610X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160611 ...read more


IBM Security Bulletin: Buffer overflow vulnerability in IBM Spectrum Protect Backup-Archive Client (CVE-2019-4267)

Jul 19, 2019 9:02 am EDT | Medium Severity

The IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client is vulnerable to a buffer overflow that could allow execution of arbitrary code on the local system or the application to crash. CVE(s): CVE-2019-4267 Affected product(s) and affected version(s):This security exposure affects IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client levels: 8.1.0.0 through 8.1.7.1 ...read more


IBM Security Bulletin: ACLs not backed up on VxFS-HP-UX filesystems by IBM Spectrum Protect Backup-Archive Client (CVE-2019-4236)

Jul 19, 2019 9:02 am EDT | Medium Severity

ACL entries associated with a file or directory on a VxFS HP-UX filesystem may not be backed up by the IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client. CVE(s): CVE-2019-4236 Affected product(s) and affected version(s):This security exposure affects IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client levels 7.1.0.0 through 7.1.8.5 on HP-UX IA64. ...read more