Low Severity

IBM Security Bulletin: IBM MQ Appliance affected by an OpenSSH vulnerability (CVE-2019-6110)

Share this post:

IBM MQ Appliance has addressed the following OpenSSH vulnerability.

CVE(s): CVE-2019-6110

Affected product(s) and affected version(s):

IBM MQ Appliance 8
Maintenance levels between 8.0.0.0 and 8.0.0.11

IBM MQ Appliance 9.1 Long Term Support (LTS) Release
Maintenance levels between 9.1.0.0 and 9.1.0.2

IBM MQ Appliance 9.1.x Continuous Delivery (CD) Release
Continuous delivery updates 9.1.1 and 9.1.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10960177
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155487

More stories

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect WebSphere Service Registry and Repository and WebSphere Service Registry and Repository Studio July 2020 CPU plus deferred CVE-2019-2590 and CVE-2020-2601

Aug 13, 2020 8:00 pm EDT | Low Severity

Vulnerabilities in IBM® SDK Java Technology Edition, Versions 7 and 8 used by WebSphere Service Registry and Repository and WebSphere Service Registry and Repository Studio. These issues were disclosed as part of the IBM Java SDK updates in July 2020. These issues are also addressed by WebSphere Application Server Network Deployment shipped with WebSphere Service Registry and Repository. ...read more


Security Bulletin: IBM Event Streams is affected by a Java vulnerability (CVE-2020-2654)

Aug 10, 2020 8:00 pm EDT | Low Severity

IBM Event Streams is affected by a Java vulnerability that was shipped in the Java runtime ...read more


Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects WebSphere Application Server July 2020 CPU that is bundled with IBM WebSphere Application Server Patterns

Aug 7, 2020 8:00 pm EDT | Low Severity

There are multiple vulnerabilities in the IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed in the IBM Java SDK updates in July 2020. ...read more