IBM Security Bulletin: The Elastic Storage Server and the GPFS Storage Server are affected by a vulnerability in IBM Spectrum Scale (CVE-2016-0392)

There is a vulnerability in IBM Spectrum Scale packaged with IBM Spectrum Scale RAID for the Elastic Storage Server and the GPFS Storage Server.

CVE(s): CVE-2016-0392

Affected product(s) and affected version(s):

The Elastic Storage Server versions 4.0, 3.5, 3.0 and 2.5

The GPFS Storage Server versions 2.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/28ZE1Eg
X-Force Database: http://ift.tt/29tldws



from IBM Product Security Incident Response Team http://ift.tt/2974Vv0