IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Image Construction and Composition Tool. (CVE-2016-0363, CVE-2016-0376, CVE-2016-3426, and CVE-2016-0264)
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, that is used by IBM Image Construction and Composition Tool. These issues were disclosed as part of the IBM Java SDK updates in April 2016.
CVE(s): CVE-2016-0363, CVE-2016-0376, CVE-2016-3426, CVE-2016-0264
Affected product(s) and affected version(s):
IBM Image Construction and Composition Tool v2.3.2.0
IBM Image Construction and Composition Tool v2.3.1.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1Tub3gf
X-Force Database: http://ift.tt/1Tg5v67
X-Force Database: http://ift.tt/1N2N2xg
X-Force Database: http://ift.tt/1N2N2xe
X-Force Database: http://ift.tt/1Tg5wqG
from IBM Product Security Incident Response Team http://ift.tt/27LaIgw