IBM Security Bulletin: Open Source Apache HTTP Server Vulnerabilities which is used by IBM PureApplication Systems (CVE-2017-7679 CVE-2017-3169 CVE-2017-3167)

A vulnerability in Open Source Apache HTTP Server affects the PureSystems® Managers used by IBM PureApplication System.

CVE(s): CVE-2017-7679, CVE-2017-3169, CVE-2017-3167

Affected product(s) and affected version(s):

IBM PureApplication System V2.1.0.0
IBM PureApplication System V2.1.0.1
IBM PureApplication System V2.1.0.2
IBM PureApplication System V2.1.0.0
IBM PureApplication System V2.1.1.0
IBM PureApplication System V2.1.2.0
IBM PureApplication System V2.1.2.1
IBM PureApplication System V2.1.2.2
IBM PureApplication System V2.1.2.3
IBM PureApplication System V2.1.2.4
IBM PureApplication System V2.2.0.0
IBM PureApplication System V2.2.1.0
IBM PureApplication System V2.2.2.0
IBM PureApplication System V2.2.2.1
IBM PureApplication System V2.2.2.2
IBM PureApplication System V2.2.3.0
IBM PureApplication System V2.2.3.1
IBM PureApplication System V2.2.3.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2i6z1p4
X-Force Database: http://ift.tt/2uD0B26
X-Force Database: http://ift.tt/2vSWo8g
X-Force Database: http://ift.tt/2uCTW8a

The post IBM Security Bulletin: Open Source Apache HTTP Server Vulnerabilities which is used by IBM PureApplication Systems (CVE-2017-7679 CVE-2017-3169 CVE-2017-3167) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2i6z1W6