IBM Security Bulletin: Multiple Vulnerabilities in the IBM SDK Java Technology Edition affect IBM Domino

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition Version 6 SR16FP41 and Version 8 SR4FP1 that affect IBM Domino. These issues were disclosed as part of the IBM Java SDK updates in May 2017, fixed with Version 6 SR16FP45 and Version 8 SR4FP5.

CVE(s): CVE-2017-3514, CVE-2017-3512, CVE-2017-3511, CVE-2017-3526, CVE-2017-3509, CVE-2017-3544, CVE-2017-3533, CVE-2017-3539, CVE-2017-1289, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843

Affected product(s) and affected version(s):

IBM Domino 9.0.1 through 9.0.1 FP8 IF4
IBM Domino 8.5.3 through 8.5.3 FP6 IF18
All 9.0.x, 9.0, 8.5.x and 8.5 releases of IBM Domino prior to those listed above

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2vwnjXJ
X-Force Database: http://ift.tt/2pv78pP
X-Force Database: http://ift.tt/2pYs23d
X-Force Database: http://ift.tt/2pv7JaY
X-Force Database: http://ift.tt/2pY6aou
X-Force Database: http://ift.tt/2pvrrn2
X-Force Database: http://ift.tt/2pYfysm
X-Force Database: http://ift.tt/2pv79tT
X-Force Database: http://ift.tt/2pYkfm0
X-Force Database: http://ift.tt/2pvwR1f
X-Force Database: http://ift.tt/2lLwOQm
X-Force Database: http://ift.tt/2mlzP6B
X-Force Database: http://ift.tt/2lLuetu
X-Force Database: http://ift.tt/2mlCjlv

The post IBM Security Bulletin: Multiple Vulnerabilities in the IBM SDK Java Technology Edition affect IBM Domino appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2vwnimD