IBM Security Bulletin: Multiple Vulnerabilities in OpenSSL affect IBM Cognos Controller

OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by IBM Cognos Controller. IBM Cognos Controller has addressed the applicable CVEs.

CVE(s): CVE-2016-2105, CVE-2016-2106, CVE-2016-2107, CVE-2016-2108, CVE-2016-2109, CVE-2016-2176

Affected product(s) and affected version(s):

IBM Cognos Controller 10.2.1

IBM Cognos Controller 10.2

IBM Cognos Controller 10.1.1

IBM Cognos Controller 10.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2mD09sT
X-Force Database: http://ift.tt/1NwOPLs
X-Force Database: http://ift.tt/25myFMu
X-Force Database: http://ift.tt/1NwOQz5
X-Force Database: http://ift.tt/1VjTr9i
X-Force Database: http://ift.tt/1Z0wO8Z
X-Force Database: http://ift.tt/25mym4p

The post IBM Security Bulletin: Multiple Vulnerabilities in OpenSSL affect IBM Cognos Controller appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2m35ey1