IBM Security Bulletin: IBM Flex System switch firmware products are affected by vulnerabilities in Python (CVE-2016-5636 CVE-2017-1000158)

Oct 31, 2018 9:01 am EDT

Categorized: High Severity

Share this post:

Vulnerabilities in Python have been addressed by the IBM Flex System switch firmware products listed below.

CVE(s): CVE-2016-5636, CVE-2017-1000158

Affected product(s) and affected version(s):

Product

Affected Version

IBM Flex System Fabric EN4093/EN4093R 10Gb Scalable Switch firmware

7.8

IBM Flex System EN2092 1Gb Ethernet Scalable firmware

7.8

IBM Flex System Fabric GbFSIM 10Gb Scalable Switch firmware

7.8

IBM Flex System CN4093 10Gb ScSE firmware

7.8

G8264CS_SI_Fabric_Image

7.8

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10737125
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/114309
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/135119



from IBM Product Security Incident Response Team https://ift.tt/2qiYFYG