IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Collaboration and Deployment Services

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version JRE6SR16FP20, JRE7SR9FP30, JRE8SR1FP10, JRE8SR2FP10 used by Collaboration and Deployment Services. These issues were disclosed as part of the IBM Java SDK updates in Jul 2017.

CVE(s): CVE-2017-10110, CVE-2017-10107, CVE-2017-10101, CVE-2017-10096, CVE-2017-10090, CVE-2017-10089, CVE-2017-10087, CVE-2017-10102, CVE-2017-10116, CVE-2017-10078, CVE-2017-10115, CVE-2017-10067, CVE-2017-10125, CVE-2017-10243, CVE-2017-10109, CVE-2017-10108, CVE-2017-10053, CVE-2017-10105

Affected product(s) and affected version(s):

IBM SPSS Collaboration and Deployment Services 6.0.0.2, 7.0.0.1, 8.0.0.0, and 8.1.0.0.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2jboMwS
X-Force Database: http://ift.tt/2x4P64r
X-Force Database: http://ift.tt/2vECPQw
X-Force Database: http://ift.tt/2x4P6Bt
X-Force Database: http://ift.tt/2x4LWxw
X-Force Database: http://ift.tt/2x52Goj
X-Force Database: http://ift.tt/2vEW7Fc
X-Force Database: http://ift.tt/2x52GEP
X-Force Database: http://ift.tt/2veVuCa
X-Force Database: http://ift.tt/2wyaY8O
X-Force Database: http://ift.tt/2wEm9Mt
X-Force Database: http://ift.tt/2xsr7ZC
X-Force Database: http://ift.tt/2x4YZ1U
X-Force Database: http://ift.tt/2vfEyLU
X-Force Database: http://ift.tt/2vQ1oZY
X-Force Database: http://ift.tt/2vEvu3j
X-Force Database: http://ift.tt/2vff6pW
X-Force Database: http://ift.tt/2wEhie8
X-Force Database: http://ift.tt/2x588Yf

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Collaboration and Deployment Services appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2A1R3Ou