IBM Security Bulletin: October 2014 Java Runtime Environment (JRE) Vulnerabilities in Multiple N series Products
Multiple N series products incorporate the Java Runtime Environment (JRE) software libraries. JRE versions up to 8u25, 7u72 and 6u85 are susceptible to multiple vulnerabilites.
CVE(s): CVE-2014-6558, CVE-2014-6517, CVE-2014-6519, CVE-2014-6504, CVE-2014-6468, CVE-2014-6527, CVE-2014-6502, CVE-2014-6513, CVE-2014-6456, CVE-2014-6503, CVE-2014-6532, CVE-2014-4288, CVE-2014-6493, CVE-2014-6466, CVE-2014-6492, CVE-2014-6458, CVE-2014-6506, CVE-2014-6476, CVE-2014-6515, CVE-2014-6511, CVE-2014-6531, CVE-2014-6512, CVE-2014-6457
Affected product(s) and affected version(s):
N series VASA Provider: 1.0, 1.0.1;
NS OnCommand Core Package: 5.2, 5.2R1, 5.2.1P1, 5.2.1P2;
SnapManager for Oracle: 3.2, 3.3, 3.3.1;
SnapManager for SAP: 3.2, 3.3, 3.3.1;
Virtual Storage Console for VMware vSphere: 4.2.1, 5.0, 4.2.1;
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ijE7w2
X-Force Database: http://ift.tt/1pNgegj
X-Force Database: http://ift.tt/1JlDohk
X-Force Database: http://ift.tt/1G3sK2e
X-Force Database: http://ift.tt/1CsmCL7
X-Force Database: http://ift.tt/1vDQiEm
X-Force Database: http://ift.tt/1pNgegh
X-Force Database: http://ift.tt/1szF3aV
X-Force Database: http://ift.tt/1szF2Uk
X-Force Database: http://ift.tt/1pNgdZE
X-Force Database: http://ift.tt/1szF2Um
X-Force Database: http://ift.tt/1pNgdZG
X-Force Database: http://ift.tt/1pNgdZN
X-Force Database: http://ift.tt/1szF0vP
X-Force Database: http://ift.tt/1pNgdZR
X-Force Database: http://ift.tt/1pNgdcg
X-Force Database: http://ift.tt/1szF2Us
X-Force Database: http://ift.tt/1pNgeg5
X-Force Database: http://ift.tt/1pNgeg7
X-Force Database: http://ift.tt/1szF2Uy
X-Force Database: http://ift.tt/1pNgegb
X-Force Database: http://ift.tt/1szF0Ma
X-Force Database: http://ift.tt/1pNgegf
X-Force Database: http://ift.tt/1szF3aT
from IBM Product Security Incident Response Team http://ift.tt/2ijGHCp