IBM Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition

Nov 7, 2018 8:01 am EST

Categorized: High Severity

Share this post:

Java SE issues disclosed in the Oracle October 2018 Critical Patch Update

CVE(s): CVE-2018-3183, CVE-2018-3169, CVE-2018-3149, CVE-2018-3180, CVE-2018-3214, CVE-2018-13785, CVE-2018-3136, CVE-2018-3139

Affected product(s) and affected version(s):

IBM SDK, Java Technology Edition, Version 6 Service Refresh 16 Fix Pack 70 and earlier releases
IBM SDK, Java Technology Edition, Version 6R1 Service Refresh 8 Fix Pack 70 and earlier releases
IBM SDK, Java Technology Edition, Version 7 Service Refresh 10 Fix Pack 30 and earlier releases
IBM SDK, Java Technology Edition, Version 7R1 Service Refresh 4 Fix Pack 30 and earlier releases
IBM SDK, Java Technology Edition, Version 8 Service Refresh 5 Fix Pack 22 and earlier releases

For detailed information on which CVEs affect which releases, please refer to the IBM SDK, Java Technology Edition Security Vulnerabilities page.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10735551
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151500
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151486
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151465
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151497
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151530
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146015
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151452
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151455

from IBM Product Security Incident Response Team https://ift.tt/2JMhU5V