High Severity

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM OS Images for Red Hat Linux Systems, AIX-based, and Windows-based deployments for IBM PureApplication System Security Bulletin

Share this post:

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, used by the OS Images for IBM PureApplication System. Java 7 is used by IBM Base OS images. These issues were disclosed as part of the IBM Java SDK updates in April 2018. IBM OS Image for Red Hat Linux Systems has addressed the following vulnerabilities.

CVE(s): CVE-2018-2800 , CVE-2018-2795 , CVE-2018-2796 , CVE-2018-2797 , CVE-2018-2798 , CVE-2018-2799 , CVE-2018-2815 , CVE-2018-2825 , CVE-2018-2783 , CVE-2018-2794 , CVE-2018-2814 , CVE-2018-2826 , CVE-2018-2790

Affected product(s) and affected version(s):

OS Images for IBM PureApplication System V2.2.3.0
OS Images for IBM PureApplication System V2.2.3.1
OS Images for IBM PureApplication System V2.2.3.2
OS Images for IBM PureApplication System V2.2.4.0
OS Images for IBM PureApplication System V2.2.5.0
OS Images for IBM PureApplication System V2.2.5.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22017432
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141956
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141951
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141952
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141953
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141954
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141955
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141971
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141981
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141939
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141950
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141970
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141982
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141946

More stories

IBM Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime affect IBM Cloud Private

Oct 15, 2019 9:03 am EDT | High Severity

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 used by IBM Cloud Private. IBM Cloud Private has addressed the applicable CVEs. CVE(s): CVE-2019-2766, CVE-2019-2786, CVE-2019-2816, CVE-2019-2762, CVE-2019-2769, CVE-2019-4473 Affected product(s) and affected version(s): IBM Cloud Private 3.1.0, 3.1.1, 3.1.2, 3.2.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source ...read more


IBM Security Bulletin: IBM Security Guardium is affected by an Oracle MySQL vulnerabilities

Oct 15, 2019 9:02 am EDT | High Severity

IBM Security Guardium has addressed the following vulnerabilities. CVE(s): CVE-2019-2789, CVE-2019-2784, CVE-2019-2740, CVE-2019-2785, CVE-2019-2741, CVE-2019-2780, CVE-2019-2819, CVE-2019-2814, CVE-2019-2737, CVE-2019-2758, CVE-2019-2879, CVE-2019-2739, CVE-2019-2815, CVE-2019-2738, CVE-2019-2755, CVE-2019-2810, CVE-2019-2798, CVE-2019-2757, CVE-2019-2834, CVE-2019-2812, CVE-2019-2778, CVE-2019-2811, CVE-2019-2795, CVE-2019-2830, CVE-2019-2797, CVE-2019-2796, CVE-2019-2752, CVE-2019-2774, CVE-2019-2730, CVE-2019-2791, CVE-2019-2808, CVE-2019-2803, CVE-2019-2802, CVE-2019-2805, CVE-2019-2826, CVE-2019-2801, CVE-2019-2800, CVE-2019-2822 Affected product(s) and affected version(s): Affected IBM Security ...read more


IBM Security Bulletin: IBM MQ Appliance is affected by kernel vulnerabilities (CVE-2019-11479, CVE-2019-11478 and CVE-2019-11477)

Oct 15, 2019 9:02 am EDT | High Severity

IBM MQ Appliance has addressed the following kernel vulnerabilities. CVE(s): CVE-2019-11479, CVE-2019-11478, CVE-2019-11477 Affected product(s) and affected version(s): IBM MQ Appliance 9.1 Long Term Support (LTS) Release Maintenance levels between 9.1.0.0 and 9.1.0.3 IBM MQ Appliance 9.1.x Continuous Delivery (CD) Release Continuous delivery updates 9.1.1 and 9.1.3 Refer to the following reference URLs for remediation ...read more