IBM Security Bulletin: Multiple vulnerabilities in OpenSSL affect the BigFix Platform
OpenSSL vulnerabilities were disclosed on March 1, 2016 by the OpenSSL Project. OpenSSL is used by the BigFix Platform has addressed the applicable CVEs.
CVE(s): CVE-2016-0797, CVE-2016-0702
Affected product(s) and affected version(s):
BigFix Platform version 9.0
BigFix Platform version 9.1
BigFix Platform version 9.2
BigFix Platform version 9.5
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fPyNRR
X-Force Database: http://ift.tt/1Tg5wqQ
X-Force Database: http://ift.tt/1Tg5v6h
from IBM Product Security Incident Response Team http://ift.tt/2fvN2rl