IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus and WebSphere Message Broker
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7.1.4.10 and IBM® Runtime Environment Java™ Versions 7.0.10.10 and 7.1.4.10 used by IBM Integration Bus and WebSphere Message Broker. These issues were disclosed as part of the IBM Java SDK updates in Jul 2017.
CVE(s): CVE-2017-10115, CVE-2017-10116, CVE-2017-10108, CVE-2017-10109
Affected product(s) and affected version(s):
IBM Integration Bus V9.0.0.0 – V9.0.0.8 and V10.0.0.0 – V10.0.0.9
WebSphere Message Broker V8.0.0.0 – V8.0.0.9
WebSphere Message Broker V7.0.0.0 – V7.0.0.8
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2zZHSkk
X-Force Database: http://ift.tt/2xsr7ZC
X-Force Database: http://ift.tt/2wyaY8O
X-Force Database: http://ift.tt/2vff6pW
X-Force Database: http://ift.tt/2vEvu3j
The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus and WebSphere Message Broker appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2zESQuZ