IBM Security Bulletin: The BigFix Platform versions 9.1 and 9.2 have security vulnerabilities that have been addressed via patch releases
The BigFix Platform verions 9.1 and 9.2 have some vulnerabilities associated with the zlib library, as well as Cross Site Scripting and XML External Entity that have been addressed in patch releases 9.1 patch 11 and 9.2 patch 11 respectively
CVE(s): CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-1203, CVE-2017-1219
Affected product(s) and affected version(s):
BigFix Platform Version 9.1, BigFix Platform Version 9.2
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2tBWSwU
X-Force Database: http://ift.tt/2lLwOQm
X-Force Database: http://ift.tt/2mlzP6B
X-Force Database: http://ift.tt/2lLuetu
X-Force Database: http://ift.tt/2mlCjlv
X-Force Database: http://ift.tt/2u5UwKc
X-Force Database: http://ift.tt/2tCatER
The post IBM Security Bulletin: The BigFix Platform versions 9.1 and 9.2 have security vulnerabilities that have been addressed via patch releases appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2u5Mp0v