High Severity

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Snapshot on AIX (CVE-2019-4473, CVE-2019-11771)

Share this post:

Multiple vulnerabilities in IBM Runtime Environment Java were disclosed as part of the IBM Java SDK updates in July 2019. IBM Runtime Environment Java is used by IBM Spectrum Protect Snapshot (formerly Tivoli Storage FlashCopy Manager) on AIX.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for DB2 on AIX

8.1.0.0-8.1.6.2
4.1.0.0-4.1.6.3

IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for Customer Applications on AIX 8.1.0.0-8.1.6.2
4.1.0.0-4.1.6.3
IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for Oracle versions on AIX 8.1.0.0-8.1.6.2
4.1.0.0-4.1.6.3
IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for Oracle with SAP environments on AIX 8.1.0.0-8.1.6.2
4.1.0.0-4.1.6.3

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1108017

More stories

Security Bulletin: WebSphere Liberty susceptible to HTTP2 implementation vulnerablility.

Feb 22, 2020 7:00 pm EST | High Severity

IBM Worklight/MobileFoundation has addressed the following vulnerability. WebSphere Liberty susceptible to HTTP2 implementation vulnerablility. ...read more


Security Bulletin: Command injection vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4210, CVE-2020-4213, CVE-2020-4222, CVE-2020-4212, CVE-2020-4211)

Feb 22, 2020 7:00 pm EST | High Severity

Command injection vulnerabilities in IBM Spectrum Protect Plus could allow a remote attacker to execute arbitrary code on the system. ...read more


Security Bulletin: A security vulnerability has been identified in libjpeg-turbo shipped with PowerAI.

Feb 22, 2020 7:00 pm EST | High Severity

Vulnerability CVE-2019-2201 found in libjpeg-turbo package. ...read more