IBM Applicable countries and regions
OpenSSL vulnerabilities were disclosed on March 1, 2016 by the OpenSSL Project. OpenSSL is used by IBM Integrated Management Module (IMM) which has addressed the applicable CVEs. IBM Integrated Management Module (IMM) is not vulnerable to CVE-2016-0800, also known as the DROWN attack.
CVE(s): CVE-2016-0705, CVE-2016-0797, CVE-2016-0798, CVE-2016-0799
Affected product(s) and affected version(s):
Product | Affected Version |
---|---|
IBM Integrated Management Module (IMM) | YUOO |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1TuyV6G
X-Force Database: http://ift.tt/24FM7sf
X-Force Database: http://ift.tt/24FM6Eo
X-Force Database: http://ift.tt/1LYkGOz
X-Force Database: http://ift.tt/1LYkEGG
from IBM Product Security Incident Response Team http://ift.tt/20vy5Fq