High Severity

Security Bulletin: Vulnerabilities in Curl affect PowerSC (CVE-2019-5435, CVE-2019-5436)

Share this post:

There are vulnerabilities in Curl that affect PowerSC.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
PowerSC 1.2

The following fileset levels are vulnerable:

 Fileset  Lower Level  Upper Level
powerscStd.tnc_pm 1.2.0.0 1.2.0.3
curl-7.65.1-1.aix6.1.ppc.rpm  7.19.4 7.64.1

 

Note: To find out whether the affected PowerSC filesets are installed on your systems, refer to the lslpp command found in AIX user's guide.

Example: rpm -qa | grep curl

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1108041

More stories

Security Bulletin: IBM MQ certified container is vulnerable to multiple vulnerabilities within IBM MQ.(CVE-2019-4655, CVE-2019-4560, CVE-2019-4614, CVE-2019-4620)

Feb 26, 2020 7:00 pm EST | High Severity

Multiple vulnerabilities were found within IBM MQ which is packaged with the IBM MQ certified container. ...read more


Security Bulletin: Vulnerability in OpenSLP affects Power Hardware Management Console (CVE-2019-5544)

Feb 26, 2020 7:00 pm EST | High Severity

The opensslp packages provide Service Location Protocol (SLP) which is an Internet Engineering Task Force (IETF) standards track protocol and provides a framework to allow networking applications to discover the existence, location, and configuration of networked services in enterprise networks. And is vulnerable by CVE-2019-5544 ...read more


Security Bulletin: IBM MQ certified container is vulnerable to a denial of service vulnerability in golang (CVE-2019-17596)

Feb 26, 2020 7:00 pm EST | High Severity

A vulnerability was discovered in golang which is used to create the control programs used by IBM MQ certified container. ...read more