High Severity

IBM Security Bulletin: IBM has released AIX and VIOS iFixes in response to the vulnerabilities known as Spectre and Meltdown

Share this post:

IBM has released the following fixes for AIX and VIOS in response to CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754.

CVE(s): CVE-2017-5715, CVE-2017-5753, CVE-2017-5754

Affected product(s) and affected version(s):
AIX 5.3 (64-bit kernel), 6.1, 7.1, 7.2
VIOS 2.2.x

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://aix.software.ibm.com/aix/efixes/security/spectre_meltdown_advisory.asc

More High Severity stories

IBM Security Bulletin: Potential denial of service vulnerability in WebSphere Application Server (CVE-2019-4046)

Mar 22, 2019 10:00 am EDT | Medium Severity

There is a potential denial of service vulnerability in WebSphere Application Server. CVE(s): CVE-2019-4046 Affected product(s) and affected version(s): This vulnerability affects the following versions and releases of IBM WebSphere Application Server: Liberty Version 9.0 Version 8.5 Version 8.0 Version 7.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10869570X-Force ...read more


IBM Security Bulletin: Potential denial of service in Liberty for Java for IBM Cloud (CVE-2018-10237)

Mar 22, 2019 10:00 am EDT | High Severity

There is a potential denial of service with the Google Guava library that is used in Liberty for Java. CVE(s): CVE-2018-10237 Affected product(s) and affected version(s):This vulnerability affects all versions of Liberty for Java in IBM Cloud up to and including v3.27. Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: ...read more


IBM Security Bulletin: Vulnerability in Python affects IBM OS Images for Red Hat Linux Systems

Mar 21, 2019 10:01 am EDT | Low Severity

Security vulnerabilities are reported when using IBM OS Image for Red Hat Linux Systems RHEL 7.2 (V3.0.6.0). CVE(s): CVE-2016-2183 Affected product(s) and affected version(s): IBM PureApplication System V2.2.3.0 IBM PureApplication System V2.2.3.1 IBM PureApplication System V2.2.3.2 IBM PureApplication System V2.2.4.0 IBM PureApplication System V2.2.5.0 IBM PureApplication System V2.2.5.1 IBM PureApplication System V2.2.5.2 Refer to the ...read more