IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK 7 affect IBM Systems Director.

There are multiple vulnerabilities in IBM SDK Java Technology Edition, Version 7 that is used by IBM Systems Director. These issues were disclosed as part of the IBM Java SDK updates in April 2017.

CVE(s): CVE-2017-3539, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843

Affected product(s) and affected version(s):

From the IBM System Director command line enter smcli lsver to determine the level of IBM System Director installed.

IBM Systems Director:

  • 6.1.0.0
  • 6.1.0.1
  • 6.1.0.2
  • 6.1.0.3
  • 6.1.1.1
  • 6.1.1.2
  • 6.1.1.3
  • 6.1.2.0
  • 6.1.2.1
  • 6.1.2.2
  • 6.1.2.3
  • 6.2.0.0
  • 6.2.0.1
  • 6.2.0.2
  • 6.2.1.0
  • 6.2.1.0
  • 6.2.1.1
  • 6.2.1.2
  • 6.3.0.0
  • 6.3.1.0
  • 6.3.1.1
  • 6.3.2.0
  • 6.3.2.1
  • 6.3.2.2
  • 6.3.3.0
  • 6.3.3.1
  • 6.3.5.0
  • 6.3.6.0
  • 6.3.7.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2wlEcos
X-Force Database: http://ift.tt/2pYkfm0
X-Force Database: http://ift.tt/2lLwOQm
X-Force Database: http://ift.tt/2mlzP6B
X-Force Database: http://ift.tt/2lLuetu
X-Force Database: http://ift.tt/2mlCjlv

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK 7 affect IBM Systems Director. appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2wlo3z8