Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Snapshot on AIX (CVE-2019-4473, CVE-2019-11771)

Multiple vulnerabilities in IBM Runtime Environment Java were disclosed as part of the IBM Java SDK updates in July 2019. IBM Runtime Environment Java is used by IBM Spectrum Protect Snapshot (formerly Tivoli Storage FlashCopy Manager) on AIX.

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for DB2 on AIX	8.1.0.0-8.1.6.2 4.1.0.0-4.1.6.3
IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for Customer Applications on AIX	8.1.0.0-8.1.6.2 4.1.0.0-4.1.6.3
IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for Oracle versions on AIX	8.1.0.0-8.1.6.2 4.1.0.0-4.1.6.3
IBM Spectrum Protect Snapshot (formerly FlashCopy Manager) for Oracle with SAP environments on AIX	8.1.0.0-8.1.6.2 4.1.0.0-4.1.6.3

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1108017

The post Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Snapshot on AIX (CVE-2019-4473, CVE-2019-11771) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2rlwVXm