IBM Security Bulletin: Vulnerabilities in OpenSSH affect Power Hardware Management Console (CVE-2015-6563 CVE-2015-6564 CVE-2016-3115 CVE-2016-1908)

OpenSSH is used by Power Hardware Management Console (HMC). HMC has addressed the applicable CVEs

CVE(s): CVE-2015-6563, CVE-2015-6564, CVE-2016-3115, CVE-2016-1908

Affected product(s) and affected version(s):

Power HMC V7.9.0.0
Power HMC V8.1.0.0
Power HMC V8.2.0.0
Power HMC V8.3.0.0
Power HMC V8.4.0.0
Power HMC V8.5.0.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ccI5QI
X-Force Database: http://ift.tt/2bZYLgC
X-Force Database: http://ift.tt/2c8Vyh9
X-Force Database: http://ift.tt/1TPZsvb
X-Force Database: http://ift.tt/2b3CeQa



from IBM Product Security Incident Response Team http://ift.tt/2ceN3kR