High Severity

IBM Security Bulletin: This Power System update is being released to address CVE-2019-4169

Share this post:

POWER9: In response to an IPMI implementation error, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2019-4169.

CVE(s): CVE-2019-4169

Affected product(s) and affected version(s):
P9 OpenPOWER releases OP910 and OP920 are affected.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10881209
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158702

More stories

IBM Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU – Jul 2019 – Includes Oracle Jul 2019 CPU affects IBM Tivoli Composite Application Manager for Transactions-Robotic Response Time

Sep 18, 2019 9:02 am EDT | High Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 ,version 8, that is used by IBM Tivoli Composite Application Manager for Transactions – Robotic Response Time. These issues were disclosed as part of the IBM Java SDK updates in July 2019. CVE(s): CVE-2019-11775, CVE-2019-11772, CVE-2019-2766, CVE-2019-2786, CVE-2019-2816, CVE-2019-2762, CVE-2019-2769, CVE-2019-7317, CVE-2019-4473, CVE-2019-11771 ...read more


IBM Security Bulletin: Vulnerability in Eclipse Jetty affecting Rational Functional Tester

Sep 18, 2019 9:02 am EDT | High Severity

There is a vulnerability in Eclipse Jetty used by Rational Functional Tester (RFT) versions 9.1.1.1, 9.2.1.1 and 9.5.0.0. RFT has addressed the applicable CVE. CVE(s): CVE-2018-12545 Affected product(s) and affected version(s): Rational Functional Tester: 9.1.1.1, 9.2.1.1 and 9.5.0.0. Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10964602X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/161491 ...read more


IBM Security Bulletin: Multiple vulnerabilities have been identified in bundled libraries of IBM Tivoli Netcool/OMNIbus Common Integration Libraries (CVE-2019-12086, CVE-2019-0201)

Sep 18, 2019 9:02 am EDT | High Severity

FasterXML Jackson library is a dependency component shipped with the IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library and Transformer for Message Bus Integration. Information about security vulnerabilities affecting FasterXML Jackson library has been published. (CVE-2019-12086) Apache ZooKeeper is a dependency component shipped with the IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library for Message ...read more