Home Unlabelled IBM Security Bulletin: IBM Spectrum Scale and IBM GPFS are affected by a security vulnerability (CVE-2016-6115)

IBM Security Bulletin: IBM Spectrum Scale and IBM GPFS are affected by a security vulnerability (CVE-2016-6115)

By
Wednesday, January 04, 2017
Read
Add Comment

A security vulnerability has been identified in IBM Spectrum Scale (GPFS) that could allow a remote authenticated attacker to overflow a buffer and execute arbitrary code on the system with root privileges or cause the server to crash. This vulnerability is only applicable if: – file encryption is being used – the key management infrastructure has been compromised

CVE(s): CVE-2016-6115

Affected product(s) and affected version(s):

IBM Spectrum Scale V4.2.0.0 thru V4.2.2.0

IBM Spectrum Scale V4.1.0.0 thru V4.1.1.10

IBM GPFS V4.1.0.0 thru V4.1.0.8

Note: This vulnerability is only applicable if:

  • file encryption is being used
  • the key management infrastructure has been compromised

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2j4BxYp
X-Force Database: http://ift.tt/2iIoS0v



from IBM Product Security Incident Response Team http://ift.tt/2j4GT5O
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us