Home Unlabelled IBM Security Bulletin: January 2015 OpenSSL security vulnerabilities in Multiple IBM N Series Products

IBM Security Bulletin: January 2015 OpenSSL security vulnerabilities in Multiple IBM N Series Products

By
Wednesday, January 11, 2017
Read
Add Comment

OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. This includes “FREAK: Factoring Attack on RSA-EXPORT keys” TLS/SSL client and server vulnerability. OpenSSL is used by Multiple IBM N Series Products. Below IBM N Series Products has addressed the applicable CVEs.

CVE(s): CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0205, CVE-2015-0206, CVE-2015-0204

Affected product(s) and affected version(s):

Clustered Data ONTAP: 8.2.x;
Clustered Data ONTAP Antivirus Connector: 1.0, 1.0.1, 1.0.2;
Data ONTAP operating in 7-Mode: 7.3.7, 8.1.4, 8.2.1, 8.2.2, 8.2.3;
Data ONTAP SMI-S Agent: 5.1.2, 5.2;
NS OnCommand Core Package: 5.1.2, 5.2.1, 5.2;
Open Systems SnapVault: 3.0.1;
SnapDrive for Unix: 5.2.2;
SnapDrive for Windows: 7.1.1;

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ijANAS
X-Force Database: http://ift.tt/1McdcJb
X-Force Database: http://ift.tt/1FgrzrZ
X-Force Database: http://ift.tt/1NmNd3l
X-Force Database: http://ift.tt/1NmNcMT
X-Force Database: http://ift.tt/1FgrwMG
X-Force Database: http://ift.tt/1Fgrzs3
X-Force Database: http://ift.tt/1Fgrx3c
X-Force Database: http://ift.tt/1NmNcMX



from IBM Product Security Incident Response Team http://ift.tt/2ig2TtN
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us