IBM Security Bulletin: Several vulnerabilities in the libpng component in IBM Tivoli Common Reporting (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)

Fixes of Cognos Business Intelligence is provided as part of Tivoli Common Reporting (TCR) fixes Several vulnerabilities has been addressed in the libpng component of IBM Cognos Business Intelligence Server.

CVE(s): CVE-2015-8126, CVE-2015-8472, CVE-2015-8540

Affected product(s) and affected version(s):

Tivoli Common Reporting 2.1

Tivoli Common Reporting 2.1.1

Tivoli Common Reporting 2.1.1.2

Tivoli Common Reporting 3.1

Tivoli Common Reporting 3.1.0.1

Tivoli Common Reporting 3.1.0.2

Tivoli Common Reporting 3.1.2

Tivoli Common Reporting 3.1.2.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1XbDbJo
X-Force Database: http://ift.tt/1rUkltb
X-Force Database: http://ift.tt/1ZcEll0
X-Force Database: http://ift.tt/1ZcEnt8



from IBM Product Security Incident Response Team http://ift.tt/1XbCXlz