IBM Security Bulletin: A vulnerability in sudo affects PowerKVM (CVE-2016-7091)
PowerKVM is affected by a vulnerability in the sudo package. IBM has now addressed this vulnerability.
CVE(s): CVE-2016-7091
Affected product(s) and affected version(s):
PowerKVM 2.1 and PowerKVM 3.1.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fJTVIN
X-Force Database: http://ift.tt/2gQ0WDR
from IBM Product Security Incident Response Team http://ift.tt/2fJWOct