Home Unlabelled IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest (CVE-2016-7055, CVE-2017-3731)

IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest (CVE-2016-7055, CVE-2017-3731)

By
Thursday, September 14, 2017
Read
Add Comment

OpenSSL vulnerabilities were disclosed on January 26, 2017 by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed the applicable CVEs.

CVE(s): CVE-2017-3731, CVE-2016-7055

Affected product(s) and affected version(s):

Rational ClearQuest versions 7.1.2 through 7.1.2.19, 8.0 through 8.0.0.21, 8.0.1 through 8.0.1.14, and 9.0 through 9.0.0.4 in the following component:

  • ClearQuest hooks and cqperl/ratlperl scripts that use SSL.
  • Database drivers configured to use SSL connections to the database.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fkwJP0
X-Force Database: http://ift.tt/2knsB3D
X-Force Database: http://ift.tt/2hjUUfe

The post IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest (CVE-2016-7055, CVE-2017-3731) appeared first on IBM PSIRT Blog.

ClearQuest versionStatus
9.0.1, 9.0.1.1Not Affected
9.0 through 9.0.0.4Affected
8.0.1 through 8.0.1.14Affected
8.0 through 8.0.0.21Affected
7.1.2 through 7.1.2.19 (all fix packs)Affected


from IBM Product Security Incident Response Team http://ift.tt/2xngKty
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us