IBM Security Bulletin: October 2015 Java Platform Standard Edition Vulnerabilities in Multiple N Series Products
Multiple N Series Products incorporate the Oracle Java Platform, Standard Edition (Java SE) software libraries. Java SE (JDK and JRE) versions below 8u65, 7u91 and 6u105 and OpenJDK versions below 1.7.0.91 and 1.8.0.65 are susceptible to multiple vulnerabilities, potentially leading to an unauthorized Operating System takeover, a partial denial of service (DOS), an unauthorized read, update, insert or delete access to a subset of Java SE accessible data.
CVE(s): CVE-2015-4844, CVE-2015-4843, CVE-2015-4805, CVE-2015-4860, CVE-2015-4883, CVE-2015-4881, CVE-2015-4835, CVE-2015-4868, CVE-2015-4810, CVE-2015-4806, CVE-2015-4871, CVE-2015-4902, CVE-2015-4872, CVE-2015-4911, CVE-2015-4893, CVE-2015-4840, CVE-2015-4842, CVE-2015-4882, CVE-2015-4903, CVE-2015-4803, CVE-2015-4734
Affected product(s) and affected version(s):
NS OnCommand Core Package: 5.2, 5.2R1, 5.2.1P1, 5.2.1P2;
SnapManager for Oracle: 3.2, 3.3, 3.3.1, 3.4;
SnapManager for SAP: 3.2, 3.3, 3.3.1, 3.4;
Virtual Storage Console for VMware vSphere: 6.0, 6.1;
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2taTqwT
X-Force Database: http://ift.tt/2e3zYbW
X-Force Database: http://ift.tt/2e3zTF2
X-Force Database: http://ift.tt/2dDMuRl
X-Force Database: http://ift.tt/2e3yY7F
X-Force Database: http://ift.tt/2dDM7G3
X-Force Database: http://ift.tt/1VK7fdy
X-Force Database: http://ift.tt/2e3AvKR
X-Force Database: http://ift.tt/2taIVcZ
X-Force Database: http://ift.tt/2u8zjNb
X-Force Database: http://ift.tt/2dDLD30
X-Force Database: http://ift.tt/2u8zkkd
X-Force Database: http://ift.tt/2e3AdDE
X-Force Database: http://ift.tt/1WhPj9p
X-Force Database: http://ift.tt/1SAJU8Q
X-Force Database: http://ift.tt/1NzQEaa
X-Force Database: http://ift.tt/2taMsIk
X-Force Database: http://ift.tt/2e3BqLd
X-Force Database: http://ift.tt/2dDLnkj
X-Force Database: http://ift.tt/2e3zDFX
X-Force Database: http://ift.tt/1SAJU8S
X-Force Database: http://ift.tt/23NlSN3
The post IBM Security Bulletin: October 2015 Java Platform Standard Edition Vulnerabilities in Multiple N Series Products appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2taZipK