IBM Security Bulletin: OpenSSL vulnerabilities in Node.js found on May 03, 2016 affect Rational Software Architect and Rational Software Architect for WebSphere Software (CVE-2016-2107, CVE-2016-2105)
OpenSSL vulnerabilities were disclosed on May 03, 2016 by the OpenSSL Project. OpenSSL is used by Rational Software Architect and Rational Software Architect for WebSphere Software. The applicable CVEs have been addressed.
CVE(s): CVE-2016-2107, CVE-2016-2105
Affected product(s) and affected version(s):
Rational Software Architect and Rational Software Architect for WebSphere Software: Ver 9.1 through 9.5x
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1Tub83u
X-Force Database: http://ift.tt/1NwOQz5
X-Force Database: http://ift.tt/1NwOPLs
from IBM Product Security Incident Response Team http://ift.tt/27LbcDo