High Severity

IBM Security Bulletin: Multiple Vulnerabilities in the Linux kernel affect the IBM FlashSystem models V840 and V9000

Share this post:

There are vulnerabilities in Java to which the IBM FlashSystem™ V840 and FlashSystem V9000 are susceptible (CVE-2017-18017 and CVE-2017-17449). An exploit of CVE-2017-18017 could allow a remote attacker to cause a denial of service condition. An exploit of CVE-2017-17449 could allow an attacker to obtain sensitive information.

CVE(s): CVE-2017-18017, CVE-2017-17449

Affected product(s) and affected version(s):

Storage Node machine type and models (MTMs) affected:

  • 9846-AE1 and 9848-AE1
  • 9846-AE2 and 9848-AE2
  • 9846-AE3 and 9848-AE3

Controller Node MTMs affected:

  • 9846-AC0 and 9848-AC0
  • 9846-AC1 and 9848-AC1
  • 9846-AC2 and 9848-AC2
  • 9846-AC3 and 9848-AC3

Supported storage node code versions which are affected

  • VRMFs prior to 1.4.8.2
  • VRMFs prior to 1.5.2.5
  • VRMFs prior to 1.6.1.0

Supported controller node code versions which are affected
· VRMFs prior to 7.8.1.8
· VRMFs prior to 8.1.3.3
· VRMFs prior to 8.2.0.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10957179
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137122
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/136106

More stories

IBM Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime affect IBM Cloud Private

Oct 15, 2019 9:03 am EDT | High Severity

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 used by IBM Cloud Private. IBM Cloud Private has addressed the applicable CVEs. CVE(s): CVE-2019-2766, CVE-2019-2786, CVE-2019-2816, CVE-2019-2762, CVE-2019-2769, CVE-2019-4473 Affected product(s) and affected version(s): IBM Cloud Private 3.1.0, 3.1.1, 3.1.2, 3.2.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source ...read more


IBM Security Bulletin: IBM Security Guardium is affected by an Oracle MySQL vulnerabilities

Oct 15, 2019 9:02 am EDT | High Severity

IBM Security Guardium has addressed the following vulnerabilities. CVE(s): CVE-2019-2789, CVE-2019-2784, CVE-2019-2740, CVE-2019-2785, CVE-2019-2741, CVE-2019-2780, CVE-2019-2819, CVE-2019-2814, CVE-2019-2737, CVE-2019-2758, CVE-2019-2879, CVE-2019-2739, CVE-2019-2815, CVE-2019-2738, CVE-2019-2755, CVE-2019-2810, CVE-2019-2798, CVE-2019-2757, CVE-2019-2834, CVE-2019-2812, CVE-2019-2778, CVE-2019-2811, CVE-2019-2795, CVE-2019-2830, CVE-2019-2797, CVE-2019-2796, CVE-2019-2752, CVE-2019-2774, CVE-2019-2730, CVE-2019-2791, CVE-2019-2808, CVE-2019-2803, CVE-2019-2802, CVE-2019-2805, CVE-2019-2826, CVE-2019-2801, CVE-2019-2800, CVE-2019-2822 Affected product(s) and affected version(s): Affected IBM Security ...read more


IBM Security Bulletin: IBM MQ Appliance is affected by kernel vulnerabilities (CVE-2019-11479, CVE-2019-11478 and CVE-2019-11477)

Oct 15, 2019 9:02 am EDT | High Severity

IBM MQ Appliance has addressed the following kernel vulnerabilities. CVE(s): CVE-2019-11479, CVE-2019-11478, CVE-2019-11477 Affected product(s) and affected version(s): IBM MQ Appliance 9.1 Long Term Support (LTS) Release Maintenance levels between 9.1.0.0 and 9.1.0.3 IBM MQ Appliance 9.1.x Continuous Delivery (CD) Release Continuous delivery updates 9.1.1 and 9.1.3 Refer to the following reference URLs for remediation ...read more