IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Rational Directory Server (Tivoli) & Rational Directory Administrator

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 and Version 8 used by Rational Directory Server (Tivoli) and Rational Directory Administrator. These issues were disclosed as part of the IBM Java SDK updates in October 2017. Install the recommended iFixes to upgrade the JRE in order to resolve these issues.

CVE(s): CVE-2017-10281, CVE-2017-10347, CVE-2017-10349, CVE-2017-10348, CVE-2017-10357, CVE-2017-10356

Affected product(s) and affected version(s):

Rational Directory Server (Tivoli) v5.2.1 iFix 13 and earlier.
Rational Directory Administrator v6.0.0.2 iFix 06 and earlier.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2D3XTGW
X-Force Database: http://ift.tt/2jy9EK0
X-Force Database: http://ift.tt/2jyG47h
X-Force Database: http://ift.tt/2i3qIHk
X-Force Database: http://ift.tt/2jy9C4Q
X-Force Database: http://ift.tt/2i6pg73
X-Force Database: http://ift.tt/2jyFZR1

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Rational Directory Server (Tivoli) & Rational Directory Administrator appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2qTV1rp