IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Tivoli Netcool Configuration Manager (ITNCM) (CVE-2016-5597, CVE-2016-5542)

May 6, 2017 10:00 am EDT

Categorized: Medium Severity

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 Service Refresh 16 Fix Pack 30, Version 8 Service Refresh 3 Fix Pack 11 and earlier releases, that is used by IBM Tivoli Netcool Configuration Manager (ITNCM). These issues were disclosed as part of the IBM Java SDK updates for October 2016.

CVE(s): CVE-2016-5597, CVE-2016-5542

Affected product(s) and affected version(s):

ITNCM 6.4.2.0 – 6.4.2.3
ITNCM 6.4.1.0 – 6.4.1.4

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2pQV0lQ
X-Force Database: http://ift.tt/2e5pD2s
X-Force Database: http://ift.tt/2e5s2Ku

from IBM Product Security Incident Response Team http://ift.tt/2pRrxX1