IBM Security Bulletin: Vulnerability in IBM Java SDK and IBM® Java Runtime affects IBM BigFix Compliance Analytics. (CVE-2017-10116)

There is a vulnerability in IBM® SDK Java™ Technology Edition, Version 8 Service Refresh 4 Fixpack 2 and IBM® Runtime Environment Java™ Version 8 Service Refresh 4 Fixpack 2 that is used by IBM BigFix Compliance Analytics. These issues were disclosed as part of the IBM Java SDK updates in July 2017.

CVE(s): CVE-2017-10116

Affected product(s) and affected version(s):

IBM BigFix Security Compliance Analytics 1.9.79

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2gyQkeY
X-Force Database: http://ift.tt/2wyaY8O

The post IBM Security Bulletin: Vulnerability in IBM Java SDK and IBM® Java Runtime affects IBM BigFix Compliance Analytics. (CVE-2017-10116) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2i7ed0M