Home Unlabelled IBM Security Bulletin: OpenSSL vunerability

IBM Security Bulletin: OpenSSL vunerability

By
Friday, January 25, 2019
Read
Add Comment

Jan 25, 2019 9:02 am EST

Categorized: Low Severity

Share this post:

IBM MessageSight has addressed the following vulnerability. OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing side channel attack in the DSA signature algorithm. An attacker could exploit this vulnerability using variations in the signing algorithm to recover the private key.

CVE(s): CVE-2018-0734

Affected product(s) and affected version(s):

Affected IBM MessageSightAffected Versions
IBM MessageSight2.0.0.0 – 2.0.0.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10796086
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152085



from IBM Product Security Incident Response Team https://ibm.co/2Wkrp1T
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us