Home Unlabelled IBM Security Bulletin: IBM MQ and IBM WebSphere MQ are vulnerable to an OpenSSL error while parsing an IPAdressFamily extension in an X.509 certificate. (CVE-2017-3735)

IBM Security Bulletin: IBM MQ and IBM WebSphere MQ are vulnerable to an OpenSSL error while parsing an IPAdressFamily extension in an X.509 certificate. (CVE-2017-3735)

By
Tuesday, April 17, 2018
Read
Add Comment

Apr 17, 2018 9:00 am EDT

Categorized: Medium Severity

Share this post:

IBM MQ and IBM WebSphere MQ have addressed a vulnerability whereby OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error while parsing an IPAdressFamily extension in an X.509 certificate.

CVE(s): CVE-2017-3735

Affected product(s) and affected version(s):

IBM WebSphere MQ v7.0.1

  • Maintenance levels 7.0.1.0 – 7.0.1.14

IBM WebSphere MQ v7.1

  • Maintenance levels 7.1.0.0 – 7.1.0.9

IBM MQ v8.0

  • Maintenance levels 8.0.0.0 – 8.0.0.8

IBM MQ v9 LTS

  • Maintenance levels 9.0.0.0 – 9.0.0.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg22013026
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/131047



from IBM Product Security Incident Response Team https://ift.tt/2JTg0Qs
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us