IBM Security Bulletin: Multiple vulnerabilities impact System Storage DS8000 Hardware Management Console (HMC)
Multiple vulnerabilities in the DS8000 Hardware Management Console are covered in this bulletin. These include: – IBM® Runtime Environment Java™ Technology Edition that is used by the DS8000 Hardware Management Console. These issues were disclosed as part of the IBM Java SDK critical patch updates in October 2015 – GNU C Library (glibc) disclosures – strongSwan disclosure – Network Time Protocol (NTP) disclosures
CVE(s): CVE-2015-4872, CVE-2013-2207, CVE-2015-1781, CVE-2015-7547, CVE-2015-4171, CVE-2015-7691, CVE-2015-7703, CVE-2015-7848, CVE-2015-7850, CVE-2015-7851, CVE-2015-7855
Affected product(s) and affected version(s):
DS8700/DS8800 R6.3 DS8870 R7.x DS8000 R8.X
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1XbDunD
X-Force Database: http://ift.tt/1WhPj9p
X-Force Database: http://ift.tt/1XbD8x9
X-Force Database: http://ift.tt/1UrnaLo
X-Force Database: http://ift.tt/1rhWqTE
X-Force Database: http://ift.tt/1UrnQ3b
X-Force Database: http://ift.tt/1XbCMXn
X-Force Database: http://ift.tt/1UrnSIt
X-Force Database: http://ift.tt/1XbCU9s
X-Force Database: http://ift.tt/1Urnx8G
X-Force Database: http://ift.tt/1XbCTlO
X-Force Database: http://ift.tt/1Urnny8
from IBM Product Security Incident Response Team http://ift.tt/1XbCBLO