IBM Security Bulletin: Vulnerabilities in OpenSSL affects IBM Tivoli Composite Application Manager for Transactions (CVE-2000-1254,CVE-2016-2177,CVE-2016-2178,CVE-2016-2179,CVE-2016-2180,CVE-2016-2181,CVE-2016-2182,CVE-2016-2183,CVE-2016-6302,CVE-2016-6303,C

Vulnerabilities in OpenSSL were disclosed by openssl.org. OpenSSL 1.0.2j, used by IBM Tivoli Composite Application Manager for Transactions (ISM), has addressed these vulnerabilities.

CVE(s): CVE-2000-1254, CVE-2016-2177, CVE-2016-2178, CVE-2016-2179, CVE-2016-2180, CVE-2016-2181, CVE-2016-2182, CVE-2016-2183, CVE-2017-3733, CVE-2016-6302, CVE-2016-6303, CVE-2016-6304, CVE-2016-6306, CVE-2016-7052, CVE-2016-8610

Affected product(s) and affected version(s):

ITCAM for Transactions includes multiple agents; this bulletin applies only to versions 7.4 of the Internet Service Monitoring agent, (ISM).

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2p5o5WA
X-Force Database: http://ift.tt/2gJ8WYq
X-Force Database: http://ift.tt/2aPXjQq
X-Force Database: http://ift.tt/2asKHex
X-Force Database: http://ift.tt/2p5DFBK
X-Force Database: http://ift.tt/2dmWOvf
X-Force Database: http://ift.tt/2pHOttS
X-Force Database: http://ift.tt/2p5n5BS
X-Force Database: http://ift.tt/2dR3VyC
X-Force Database: http://ift.tt/2p5AbPw
X-Force Database: http://ift.tt/2pHN6uT
X-Force Database: http://ift.tt/2p5wKZr
X-Force Database: http://ift.tt/2pHz38M
X-Force Database: http://ift.tt/2p5whWY
X-Force Database: http://ift.tt/2pHL6D5
X-Force Database: http://ift.tt/2hNr07D

The post IBM Security Bulletin: Vulnerabilities in OpenSSL affects IBM Tivoli Composite Application Manager for Transactions (CVE-2000-1254,CVE-2016-2177,CVE-2016-2178,CVE-2016-2179,CVE-2016-2180,CVE-2016-2181,CVE-2016-2182,CVE-2016-2183,CVE-2016-6302,CVE-2016-6303,C appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2p5vUMe