High Severity

Security Bulletin: Vulnerabilities with Kernel, GnuTLS affect IBM Cloud Object Storage Systems (August 2022v1)

Share this post:

Vulnerabilities with Kernel, GnuTLS affect IBM Cloud Object Storage Systems. These vulnerabilities have been addressed in the latest ClevOS releases

CVE(s): CVE-2021-4197, CVE-2022-2503, CVE-2022-1462, CVE-2022-1353, CVE-2021-33655, CVE-2022-29581, CVE-2022-1012, CVE-2022-0854, IBM X-Force ID:   226018

IBM X-Force ID:   227645

IBM X-Force ID:   226017

Affected product(s) and affected version(s):

 

Affected Product(s) CVE's ID

COS

Vulnerable

Versions (s)

IBM Cloud Object Storage Systems CVE-2021-4197 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2022-2503 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2022-1462 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2022-1353 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2021-33655 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2022-29581 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2022-1012 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2022-0854 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems 226018 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems 227645 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems 226017 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2021-4209 3.16.7.62 or Prior  releases
IBM Cloud Object Storage Systems CVE-2022-2509 3.16.7.62 or Prior  releases

 

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6616973
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/222455
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/233527
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/227501
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/225506
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/231424
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/226762
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/230055
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/222424

More stories

Security Bulletin: A Kafka vulnerability affects IBM Operations Analytics Predictive Insights (CVE-2022-34917 )

November 29, 2022 | High Severity

Kafka vulnerability affects IBM Operations Analytics Predictive Insights [CVE-2022-34917]. Kafka is used by IBM Operations Analytics Predictive Insight in the data ingestion and processing services. The vulnerabilities have been addressed. ...read more


Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 102.4ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF16 – 2022.4.0

November 29, 2022 | High Severity

Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2022-42932, CVE-2022-40956, CVE-2022-42928, CVE-2022-42929, CVE-2022-42927, CVE-2022-40962, CVE-2022-40958, CVE-2022-40960, CVE-2022-40957, CVE-2022-40959 ...read more


Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty profile affects IBM Operations Analytics Predictive Insights(CVE-2022-22393 CVE-2022-22476 CVE-2022-22475)

November 29, 2022 | High Severity

Websphere Application Server Liberty profile is used in the UI component of IBM Operations Analytics Predictive Insights. The vulnerabilities have been addressed. ...read more