IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM WebSphere MQ Internet Pass-Thru

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 that is used by IBM WebSphere MQ Internet Pass-Thru. These issues were disclosed as part of the IBM Java SDK updates in January and April 2017

CVE(s): CVE-2016-5546, CVE-2016-5548, CVE-2016-5549, CVE-2016-5547, CVE-2016-5552, CVE-2016-2183, CVE-2017-3511

Affected product(s) and affected version(s):

IBM WebSphere MQ Internet Pass-Thru 2.1.0.0 – 2.1.0.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2sm3Ys9
X-Force Database: http://ift.tt/2lA4akm
X-Force Database: http://ift.tt/2lAx183
X-Force Database: http://ift.tt/2msD77U
X-Force Database: http://ift.tt/2msBF5I
X-Force Database: http://ift.tt/2lAiqcB
X-Force Database: http://ift.tt/2dR3VyC
X-Force Database: http://ift.tt/2pv7JaY

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM WebSphere MQ Internet Pass-Thru appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2sm6XRD