High Severity

IBM Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition

Share this post:

Java SE issues disclosed in the Oracle October 2016 Critical Patch Update

CVE(s): CVE-2016-5582, CVE-2016-5568, CVE-2016-5556, CVE-2016-5573, CVE-2016-5597, CVE-2016-5554, CVE-2016-5542

Affected product(s) and affected version(s):

These vulnerabilities affect IBM SDK, Java Technology Edition, Version 6 Service Refresh 16 Fix Pack 30 and earlier releases
These vulnerabilities affect IBM SDK, Java Technology Edition, Version 6R1 Service Refresh 8 Fix Pack 30 and earlier releases
These vulnerabilities affect IBM SDK, Java Technology Edition, Version 7 Service Refresh 9 Fix Pack 50 and earlier releases
These vulnerabilities affect IBM SDK, Java Technology Edition, Version 7R1 Service Refresh 3 Fix Pack 50 and earlier releases
These vulnerabilities affect IBM SDK, Java Technology Edition, Version 8 Service Refresh 3 Fix Pack 11 and earlier releases

NOTE: CVE-2016-5582 affects IBM SDK, Java Technology Edition on Solaris, HP-UX and Mac OS only.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=swg21985393
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118069
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118068
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118067
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118070
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118071
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118072
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/118073

More stories

Security Bulletin: Vulnerability in jsoup may affect Cúram Social Program Management (CVE-2021-37714)

Nov 25, 2021 7:01 pm EST | High Severity

IBM Cúram Social Program Management uses the jsoup libraries, for which there is a publicly known vulnerability. For this vulnerability jsoup is susceptible to a denial of service attack, caused by improper input validation. ...read more


Security Bulletin: Vulnerabilities affect IBM Netcool Agile Service Manager

Nov 25, 2021 7:00 pm EST | High Severity

Vulnerabilities exist in IBM Netcool Agile Service Manager, these have been addressed. ...read more


Security Bulletin: Vulnerabilities affect IBM Netcool Agile Service Manager

Nov 24, 2021 7:00 pm EST | High Severity

Vulnerabilities exist in IBM Netcool Agile Service Manager, these have been addressed. ...read more