High Severity

IBM Security Bulletin: IBM has released AIX and VIOS iFixes in response to the vulnerabilities known as Spectre and Meltdown

Share this post:

IBM has released the following fixes for AIX and VIOS in response to CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754.

CVE(s): CVE-2017-5715, CVE-2017-5753, CVE-2017-5754

Affected product(s) and affected version(s):
AIX 5.3 (64-bit kernel), 6.1, 7.1, 7.2
VIOS 2.2.x

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://aix.software.ibm.com/aix/efixes/security/spectre_meltdown_advisory.asc

More High Severity stories

IBM Security Bulletin: Vulnerability affects IBM Cloud Object Storage SDK Java (June 2019)

Jun 22, 2019 9:01 am EDT | Medium Severity

Vulnerability affects IBM Cloud Object Storage SDK Java. It has been addressed in the latest SDK Java release. CVE(s): CVE-2019-12086 Affected product(s) and affected version(s): CVE-ID Affected SDK Releases CVE-2019-12086 IBM COS SDK Java releases prior to 2.5.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10887529X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/161256 ...read more


IBM Security Bulletin: Multiple Security Vulnerabilities fixed in IBM Security Access Manager Appliance

Jun 22, 2019 9:01 am EDT | High Severity

Multiple Security vulnerabilities have been fixed in the 9.0.7 IBM Security Access Manager (ISAM) appliance. CVE(s): CVE-2018-0732, CVE-2018-0739, CVE-2017-3735, CVE-2019-4152, CVE-2019-4151, CVE-2019-4150, CVE-2019-4153, CVE-2019-4156, CVE-2019-4157, CVE-2019-4158, CVE-2019-5953, CVE-2019-9636, CVE-2019-4135, CVE-2013-2197, CVE-2016-10542, CVE-2016-5725, CVE-2018-16850, CVE-2017-7546, CVE-2017-12172, CVE-2016-7048, CVE-2016-0766, CVE-2019-4145 Affected product(s) and affected version(s):ISAM 9.0.1, 9.0.2 9.0.3, 9.0.4, 9.0.5, 9.0.6 ISAM Appliance 9.0.1, 9.0.2 9.0.3, 9.0.4, ...read more


IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Host On-Demand

Jun 22, 2019 9:01 am EDT | High Severity

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8.0 used by Host On-Demand. Host On-Demand has addressed the applicable CVEs. CVE(s): CVE-2019-2449, CVE-2018-12547 Affected product(s) and affected version(s): Host On-Demand: 12.0, 12.0.0.1, 12.0.1, 12.0.2, 12.0.3, 12.0.4, 12.0.4.1 Host On-Demand: 13.0, 13.0.1, 13.0.1.1 and 13.0.2 Refer to the following reference URLs for remediation and ...read more