Home Unlabelled IBM Security Bulletin: Multiple Vulnerabilities in libxml2 affects IBM Cognos Analytics

IBM Security Bulletin: Multiple Vulnerabilities in libxml2 affects IBM Cognos Analytics

By
Monday, March 19, 2018
Read
Add Comment

This bulletin addresses several security vulnerabilities that are fixed in IBM Cognos Analytics 11.0.10.0. IBM Cognos Analytics uses the libxml2 library . Mulitple libxml2 vulnerabilities have been addressed. A vulnerablity was addressed whereby detailed technical error messages can allow an adversary to gain information about the application and database that could be used to conduct further attacks.

CVE(s): CVE-2016-4658, CVE-2017-9050, CVE-2017-9049, CVE-2017-9048, CVE-2017-9047, CVE-2017-8872, CVE-2017-7376, CVE-2017-7375, CVE-2017-5969, CVE-2017-16932, CVE-2017-16931, CVE-2016-9711

Affected product(s) and affected version(s):

IBM Cognos Analytics Versions 11.0.0.0 to 11.0.9.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg22014337
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/117175
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/126277
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/126276
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/126275
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/126274
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/125890
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/128276
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/128275
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/128274
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/135489
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/135488
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/119619

The post IBM Security Bulletin: Multiple Vulnerabilities in libxml2 affects IBM Cognos Analytics appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2u0MkwV
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us