IBM Security Bulletin : IBM Storwize V7000 Unified is affected by multiple GSKit vulnerabilities in GPFS

A fix is available for IBM Storwize V7000 Unified, for GPFS security vulnerabilities

CVE(s): CVE-2018-1431, CVE-2018-1447, CVE-2017-3732, CVE-2016-0705

Affected product(s) and affected version(s):

IBM Storwize V7000 Unified
The product is affected when running supported code releases 1.6.0.0 to 1.6.2.4. The product running unsupported code releases 1.5 or earlier are also affected.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10734249
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139240
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139972
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/121313
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/111140

The post IBM Security Bulletin : IBM Storwize V7000 Unified is affected by multiple GSKit vulnerabilities in GPFS appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2EHRROk