High Severity

IBM Security Bulletin: IBM Informix Client SDK is affected by GSKIT vulnerabilities

Share this post:

IBM Informix Client SDK has addressed the issues reported for the following GSKIT vulnerabilities.

CVE(s): CVE-2016-0705, CVE-2017-3732, CVE-2017-3736, CVE-2018-1426, CVE-2018-1427, CVE-2018-1428

Affected product(s) and affected version(s):

Affected IBM Informix Dynamic Server Affected Versions
IBM Informix Client Software Development Kit 4.10.xC1 through 4.10.xC12

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10964993
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/111140
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/121313
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134397
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139071
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139072
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139073

More stories

Security Bulletin: IBM Cognos Controller 2019Q4 Security Updater: Multiple Security Vulnerabilities have been identified in IBM Cognos Controller

Nov 21, 2019 9:38 am EST | High Severity

This bulletin addresses several security vulnerabilities that are fixed in IBM Cognos Controller 10.4.1 IF2, 10.4.0 IF5, 10.3.1 IF12 and 10.3.0 FP1 IF13. A vulnerability exists in IBM Cognos Controller that could allow an authenticated user to obtain sensitive information due to easy to guess session identifier names. IBM Cognos Controller stores sensitive information in ...read more


Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM OS Images for Red Hat Linux Systems (July2019 updates)

Nov 21, 2019 9:10 am EST | High Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that are used by the OS Images for IBM Cloud Pak System formerly known as IBM PureApplication System. These issues were disclosed as part of the IBM Java SDK quarterly updates in July 2019. OS Images have addressed the applicable CVEs. Affected product(s) and affected ...read more


Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Tivoli Netcool/OMNIbus (CVE-2019-4473, CVE-2019-11771)

Nov 21, 2019 8:49 am EST | High Severity

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 8 that is used by Tivoli Netcool/OMNIbus. These were disclosed as part of the IBM Java SDK update in July 2019. Affected product(s) and affected version(s): Tivoli Netcool/OMNIbus 8.1.0 Refer to the following reference URLs for remediation and additional vulnerability details:   Source ...read more