High Severity

IBM Security Bulletin: IBM has released AIX and VIOS iFixes in response to the vulnerabilities known as Spectre and Meltdown

Jan 26, 2018 11:59 am EDT

Share this post:

IBM has released the following fixes for AIX and VIOS in response to CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754.

CVE(s): CVE-2017-5715, CVE-2017-5753, CVE-2017-5754

Affected product(s) and affected version(s):
AIX 5.3 (64-bit kernel), 6.1, 7.1, 7.2
VIOS 2.2.x

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://aix.software.ibm.com/aix/efixes/security/spectre_meltdown_advisory.asc

High Severity

IBM Security Bulletin: Vulnerability in Enterprise Networking Operating System (ENOS) affects IBM RackSwitch Products (CVE-2017-3765)

Search Posts

Resources

Feed for PSIRT Blog Posts

IBM Product Security Vulnerabilities

See information about: IBM Security Bulletins, IBM Security Vulnerability Management (PSIRT), Reporting a Security Issue, IBM Secure Engineering

Learn More

IBM Product Support Portal

Access IBM Product Support to: Subscribe to Notifications, Download Fixes & PTFs (Fix Central), Access the Directory of IBM Worldwide Contacts

See What's New

Helpful Information

IBM Security Bulletin: Potential denial of service vulnerability in WebSphere Application Server (CVE-2019-4046)

Mar 22, 2019 10:00 am EDT | Medium Severity

There is a potential denial of service vulnerability in WebSphere Application Server. CVE(s): CVE-2019-4046 Affected product(s) and affected version(s): This vulnerability affects the following versions and releases of IBM WebSphere Application Server: Liberty Version 9.0 Version 8.5 Version 8.0 Version 7.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10869570X-Force ...read more

IBM Security Bulletin: Potential denial of service in Liberty for Java for IBM Cloud (CVE-2018-10237)

Mar 22, 2019 10:00 am EDT | High Severity

There is a potential denial of service with the Google Guava library that is used in Liberty for Java. CVE(s): CVE-2018-10237 Affected product(s) and affected version(s):This vulnerability affects all versions of Liberty for Java in IBM Cloud up to and including v3.27. Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: ...read more

IBM Security Bulletin: Vulnerability in Python affects IBM OS Images for Red Hat Linux Systems

Mar 21, 2019 10:01 am EDT | Low Severity

Security vulnerabilities are reported when using IBM OS Image for Red Hat Linux Systems RHEL 7.2 (V3.0.6.0). CVE(s): CVE-2016-2183 Affected product(s) and affected version(s): IBM PureApplication System V2.2.3.0 IBM PureApplication System V2.2.3.1 IBM PureApplication System V2.2.3.2 IBM PureApplication System V2.2.4.0 IBM PureApplication System V2.2.5.0 IBM PureApplication System V2.2.5.1 IBM PureApplication System V2.2.5.2 Refer to the ...read more

High Severity

IBM Security Bulletin: IBM has released AIX and VIOS iFixes in response to the vulnerabilities known as Spectre and Meltdown

IBM Security Bulletin: Vulnerability in Enterprise Networking Operating System (ENOS) affects IBM RackSwitch Products (CVE-2017-3765)

IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Security SiteProtector System

Search Posts

Archives

Resources

IBM Product Security Vulnerabilities

IBM Product Support Portal

Helpful Information

IBM Security Bulletin: Potential denial of service vulnerability in WebSphere Application Server (CVE-2019-4046)

Mar 22, 2019 10:00 am EDT | Medium Severity

IBM Security Bulletin: Potential denial of service in Liberty for Java for IBM Cloud (CVE-2018-10237)

Mar 22, 2019 10:00 am EDT | High Severity

IBM Security Bulletin: Vulnerability in Python affects IBM OS Images for Red Hat Linux Systems

Mar 21, 2019 10:01 am EDT | Low Severity