High Severity

IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Snapshot on AIX and Linux (CVE-2018-1890, CVE-2018-12547) Security Bulletin

Share this post:

Multiple vulnerabilities in IBM® Runtime Environment Java™ were disclosed as part of the IBM Java SDK updates in January 2019. IBM® Runtime Environment Java™ is used by IBM Spectrum Protect Snapshot (formerly Tivoli Storage FlashCopy Manager) on AIX and Linux.

CVE(s): CVE-2018-1890, CVE-2018-12547

Affected product(s) and affected version(s):
The following IBM FlashCopy Manager (IBM Spectrum Protect Snapshot (fomerly Tivoli Storage FlashCopy Manager) components on Unix and Linux are affected:

  • IBM Spectrum Protect Snapshot for DB2 versions on AIX and Linux x86 only:
    – 8.1.0.0 through 8.1.6.0
    – 4.1.0.0 through 4.1.6.2
  • IBM Spectrum Protect Snapshot for Custom Applications versions on AIX and Linux x86 only:
    – 8.1.0.0 through 8.1.6.0
    – 4.1.0.0 through 4.1.6.2
  • IBM Spectrum Protect Snapshot for Oracle versions on AIX and Linux x86 only:
    – 8.1.0.0 through 8.1.6.0
    – 4.1.0.0 through 4.1.6.2
  • IBM Spectrum Protect Snapshot for Oracle with SAP environments versions on AIX and Linux x86 only:
    – 8.1.0.0 through 8.1.6.0
    – 4.1.0.0 through 4.1.6.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10885230
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152081
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/157512

More stories

IBM Security Bulletin: Vulnerability in libssh2 affects Power Hardware Management Console (CVE-2019-3862)

Sep 17, 2019 9:02 am EDT | High Severity

libssh2 is used by Power Hardware Management Console (HMC). HMC has addressed the applicable CVE. CVE(s): CVE-2019-3862 Affected product(s) and affected version(s): Power HMC V8.7.0.0 Power HMC V9.1.910.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www.ibm.com/support/pages/security-bulletin-vulnerability-libssh2-affects-power-hardware-management-console-cve-2019-3862X-Force Database: ...read more


IBM Security Bulletin: Watson Explorer is affected by an Apache Zookeeper vulnerability (CVE-2019-0201)

Sep 17, 2019 9:02 am EDT | High Severity

IBM Watson Explorer has addressed the following vulnerability in Apache ZooKeeper. CVE(s): CVE-2019-0201 Affected product(s) and affected version(s): The vulnerability applies to the following products and versions: Affected Product Affected Versions IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.0, 12.0.1, 12.0.2.0 – 12.0.2.2 IBM Watson Explorer Foundational Components 11.0.0.0 – 11.0.0.3, 11.0.1, 11.0.2.0 – ...read more


IBM Security Bulletin: Vulnerability affects Watson Explorer Foundational Components (CVE-2018-15756)

Sep 17, 2019 9:01 am EDT | High Severity

Security vulnerability affects IBM Watson Explorer Foundational Components. CVE(s): CVE-2018-15756 Affected product(s) and affected version(s): The vulnerability applies to the following product and version: Watson Explorer Foundational Components versions 12.0.0, 12.0.1, 12.0.2.0 – 12.0.2.2 Watson Explorer Foundational Components versions 11.0.2.0 – 11.0.2.4 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: ...read more