Rational

IBM Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Rational Application Developer for WebSphere Software included in Rational Developer for i and Rational Developer for AIX and Linux

Apr 28, 2016 2:00 pm EDT

Portions of IBM Rational Application Developer for WebSphere Software are shipped as a component of Rational Developer for i (RPG and COBOL + Modernization Tools, Java and EGL editions), and Rational Developer for AIX and Linux. OpenSSL vulnerabilities were disclosed on March 1, 2016 by the OpenSSL project. OpenSSL is used by the Cordova tools ...read more


2013 IBM® SDK, Java™ Technology Edition Vulnerabilities

Apr 25, 2016 5:34 pm EDT

Recent media articles have mentioned that a patch released by IBM in 2013 for a vulnerability in its IBM® SDK, Java™ Technology Edition implementation can be bypassed. IBM is aware of the vulnerability and is working to address the issue. ...read more


IBM Security bulletin: Rational Directory Server (Tivoli) is affected by an Apache Tomcat vulnerabilities

Apr 15, 2016 11:29 pm EDT

The Apache Tomcat application server in installations of IBM Rational Directory Server (Tivoli) contains security vulnerabilities (CVE-2015-5345, CVE-2015-5346, CVE-2015-5351, CVE-2016-0706, CVE-2016-0714, CVE-2016-0763, CVE-2015-5174). CVE(s):CVE-2015-5345, CVE-2015-5346, CVE-2015-5351, CVE-2016-0706, CVE-2016-0714, CVE-2016-0763 and CVE-2015-5174 Affected product(s) and affected version(s): Rational Directory Server (Tivoli) version 5.2.0.2 Refer to the following reference URLs for remediation and additional vulnerability details: Source ...read more


IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Rational Directory Server (Tivoli) and Rational Directory Administrator (CVE-2015-2613, CVE-2015-2601, CVE-2015-2625, CVE-2015-1931, CVE-2015-7575, CVE-2015-4872)

Apr 5, 2016 6:06 pm EDT

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 and Version 7 that are used by IBM Rational Directory Server (Tivoli) and IBM Rational Directory Administrator. New iFixes do not include the JRE. Install new iFixes and updated JRE to resolve these issues. CVE(s):CVE-2015-2613, CVE-2015-2601, CVE-2015-2625, CVE-2015-1931, CVE-2015-7575 and CVE-2015-4872 Affected ...read more


IBM Security Bulletin: A vulnerbility in Bouncy Castle affects Rational Performance Tester (CVE-2015-7940 )

Apr 5, 2016 6:05 pm EDT

Bouncy Castle could allow a remote attacker to obtain sensitive information, caused by an invalid curve attack. An attacker could exploit this vulnerability to extract private keys used in elliptic curve crytpography and obtain sensitive information. CVE(s):CVE-2015-7940 Affected product(s) and affected version(s): RPT versions 8.2.*, 8.3.*, 8.5.*, 8.6.*, 8.7.*. Refer to the following reference URLs ...read more


IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Rational Directory Server (Tivoli) and Rational Directory Administrator (CVE-2015-2613, CVE-2015-2601, CVE-2015-2625, CVE-2015-1931, CVE-2015-7575, CVE-2015-4872)

Apr 5, 2016 6:05 pm EDT

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 and Version 7 that are used by IBM Rational Directory Server (Tivoli) and IBM Rational Directory Administrator. New iFixes do not include the JRE. Install new iFixes and updated JRE to resolve these issues. CVE(s):CVE-2015-2613, CVE-2015-2601, CVE-2015-2625, CVE-2015-1931, CVE-2015-7575 and CVE-2015-4872 Affected ...read more


IBM Rational Directory Server (Tivoli) is affected by an Apache Tomcat vulnerability (CVE-2014-7810)

Apr 5, 2016 6:05 pm EDT

The Apache Tomcat application server in installations of IBM Rational Directory Server (Tivoli) contains a security vulnerability. CVE(s):CVE-2014-7810 Affected product(s) and affected version(s): Rational Directory Server (Tivoli) version 5.2.0.2 Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg21980321 X-Force Database: http://exchange.xforce.ibmcloud.com/vulnerabilities/103155 ...read more


IBM Security Bulletin: Vulnerability in Rational DOORS Next Generation and Rational Requirements Composer with potential for Cross Site Scripting attack (CVE-2016-0243)

Mar 22, 2016 12:32 pm EDT

An undisclosed security vulnerability of IBM Rational DOORS Next Generation and Rational Requirements Composer may result in a Cross Site Scripting attack. CVE(s):CVE-2016-0243 Affected product(s) and affected version(s): Rational Requirements Composer 4.0 – 4.0.7 Rational DOORS Next Generation 4.0.1 – 4.0.7 Rational DOORS Next Generation 5.0 – 5.0.2 Rational DOORS Next Generation 6.0 – 6.0.1 ...read more


IBM Security Bulletin: Multiple Vulnerabilities in Oracle Outside In Technology affects IBM Rational DOORS Next Generation

Mar 22, 2016 12:32 pm EDT

IBM Rational DOORS Next Generation® is affected by a vulnerability in the Oracle Outside In Technology® that is used as a component. CVE(s):CVE-2015-4808, CVE-2015-6013, CVE-2015-6014, CVE-2015-6015 and CVE-2016-0432 Affected product(s) and affected version(s): Rational DOORS Next Generation 6.0.1 Rational DOORS Next Generation 6.0 Rational DOORS Next Generation 5.0.2 Releases prior to 5.0.2 are not affected. ...read more