High Severity

Security Bulletin: Multiple vulnerabilities in HTTP/2 implementation used by Liberty for Java for IBM Cloud

Share this post:

There are multiple vulnerabilities in the HTTP/2 implementation that is used by WebSphere Application Server Liberty. This affects the servlet-4.0 and servlet-3.1 features. These vulnerabilities have been addressed.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
Liberty for Java 3.37

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1128387

More stories

Security Bulletin: IBM® Db2® is vulnerable to denial of service (CVE-2020-4135).

Feb 18, 2020 7:01 pm EST | High Severity

Db2 is vulnerable to a denial of service. Db2 could allow an attacker to send specially crafted packets to the Db2 server to cause excessive memory usage and cause Db2 to terminate abnormally. ...read more

Security Bulletin: Security vulnerabilities affect multiple IBM Rational products based on IBM Jazz technology

Feb 18, 2020 7:00 pm EST | High Severity

Multiple security vulnerabilities affect components used by the following products that may affect those products: Collaborative Lifecycle Management (CLM), Rational DOORS Next Generation (RDNG), Rational Engineering Lifecycle Manager (RELM), Rational Team Concert (RTC), Rational Quality Manager (RQM), Rational Rhapsody Design Manager (Rhapsody DM), IBM Rhapsody Model Manager and Rational Software Architect Design Manager (RSA DM). ...read more

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Monitoring

Feb 18, 2020 7:00 pm EST | High Severity

There are several vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring (ITM) components. ...read more