Medium Severity

Security Bulletin: CVE-2020-2601 (deferred from Oracle Jan 2020 CPU)

Sep 21, 2020 8:00 pm EDT

Share this post:

Steps to update Java for QMF Workstation & QMF Vision

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
DB2 Query Management Facility for z/OS	11.2.1
DB2 Query Management Facility for z/OS	12.1
Query Management Facility Classic Edition	11.1
DB2 Query Management Facility for z/OS	12.2
Query Management Facility Enterprise Edition	11.1
DB2 Query Management Facility for z/OS	11.2
DB2 Query Management Facility for z/OS	11.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6335331

Medium Severity

Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities

Search Posts

Resources

Feed for PSIRT Blog Posts

IBM Product Security Vulnerabilities

See information about: IBM Security Bulletins, IBM Security Vulnerability Management (PSIRT), Reporting a Security Issue, IBM Secure Engineering

Learn More

IBM Product Support Portal

Access IBM Product Support to: Subscribe to Notifications, Download Fixes & PTFs (Fix Central), Access the Directory of IBM Worldwide Contacts

See What's New

Helpful Information

Security Bulletin: Multiple vulnerabilites affect IBM Engineering products.

Feb 26, 2021 7:01 pm EST | Medium Severity

There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management (ELM), Global Configuration Management (GCM), IBM Engineering Requirements Management DOORS Next (DOORS Next), IBM Engineering Requirements Quality Assistant On-Premises (RQA On-Prem), IBM Engineering Lifecycle Optimization - Engineering Insights (ENI), IBM Engineering Workflow Management (EWM), IBM Engineering Systems Design Rhapsody - Design Manager (RDM), IBM Engineering Systems Design Rhapsody - Model Manager (RMM). ...read more

Security Bulletin: IBM Cloud Private is vulnerable to Kubernetes vulnerabilities (CVE-2020-8566, CVE-2020-8565, CVE-2020-8563, CVE-2020-8564)

Feb 26, 2021 7:01 pm EST | Medium Severity

IBM Cloud Private is vulnerable to Kubernetes vulnerabilities ...read more

Security Bulletin: IBM Cloud Private is vulnerable to a WebSphere Application Server Liberty vulnerability (CVE-2020-4590)

Feb 26, 2021 7:01 pm EST | Medium Severity

IBM Cloud Private is vulnerable to a WebSphere Application Server Liberty vulnerability ...read more

Medium Severity

Security Bulletin: CVE-2020-2601 (deferred from Oracle Jan 2020 CPU)

Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities

Security Bulletin: CVE-2020-2590 (deferred from Oracle Jan 2020 CPU)

Search Posts

Archives

Resources

IBM Product Security Vulnerabilities

IBM Product Support Portal

Helpful Information

Security Bulletin: Multiple vulnerabilites affect IBM Engineering products.

Feb 26, 2021 7:01 pm EST | Medium Severity

Security Bulletin: IBM Cloud Private is vulnerable to Kubernetes vulnerabilities (CVE-2020-8566, CVE-2020-8565, CVE-2020-8563, CVE-2020-8564)

Feb 26, 2021 7:01 pm EST | Medium Severity

Security Bulletin: IBM Cloud Private is vulnerable to a WebSphere Application Server Liberty vulnerability (CVE-2020-4590)

Feb 26, 2021 7:01 pm EST | Medium Severity