IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect IBM Security Access Manager for Mobile

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Versions 7 and 8 and IBM® Runtime Environment Java™ Versions 7 and 8 that are used by IBM Security Access Manager for Mobile. These issues were disclosed as part of the IBM Java SDK updates in April 2016.

CVE(s): CVE-2016-3443, CVE-2016-0687, CVE-2016-0686, CVE-2016-3427, CVE-2016-3449, CVE-2016-3422, CVE-2016-3426, CVE-2016-0363, CVE-2016-0376, CVE-2016-0264


Affected product(s) and affected version(s):

IBM Security Access Manager for Mobile 8.0, all firmware versions

IBM Security Access Manager 9.0, all firmware versions

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/255H32Y
X-Force Database: http://ift.tt/1Tg5v61
X-Force Database: http://ift.tt/1N2N2gY
X-Force Database: http://ift.tt/1Tg5wqC
X-Force Database: http://ift.tt/1N2N48r
X-Force Database: http://ift.tt/1N2N48x
X-Force Database: http://ift.tt/1Tg5wqE
X-Force Database: http://ift.tt/1N2N2xe
X-Force Database: http://ift.tt/1Tg5v67
X-Force Database: http://ift.tt/1N2N2xg
X-Force Database: http://ift.tt/1Tg5wqG


from IBM Product Security Incident Response Team http://ift.tt/1ZXeRIv