Oct 24, 2019 9:04 am EST
Categorized: High Severity
Share this post:
HTTP Server is supported by IBM i. IBM i has addressed the applicable CVEs.
CVE(s): CVE-2019-9517, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098
Affected product(s) and affected version(s):
Releases 7.4, 7.3, and 7.2 of IBM i are affected.
Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www.ibm.com/support/pages/node/1097703X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/165183X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/165369X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/165368X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/165367X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/165365X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/165366
See information about: IBM Security Bulletins, IBM Security Vulnerability Management (PSIRT), Reporting a Security Issue, IBM Secure Engineering
Access IBM Product Support to: Subscribe to Notifications, Download Fixes & PTFs (Fix Central), Access the Directory of IBM Worldwide Contacts
See What's New
IBM Worklight/MobileFoundation has addressed the following vulnerability. WebSphere Liberty susceptible to HTTP2 implementation vulnerablility. ...read more
Command injection vulnerabilities in IBM Spectrum Protect Plus could allow a remote attacker to execute arbitrary code on the system. ...read more
Vulnerability CVE-2019-2201 found in libjpeg-turbo package. ...read more