Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM838CBA92067043DDA704BB0F004792D82A30A7E58F2A62B231AA22AF446EADE8
HistoryFeb 04, 2020 - 4:40 p.m.

Security Bulletin: A security vulnerability has been identified in IBM HTTP Server that is shipped with IBM Rational ClearQuest (CVE-2012-0876, CVE-2012-1148, CVE-2016-4472, CVE-2016-0718)

2020-02-0416:40:40
www.ibm.com
8
JSON

Summary

IBM HTTP Server (IHS) is shipped as a component of IBM Rational ClearQuest. Information about a security vulnerability affecting IHS has been published in a security bulletin.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section.

Affected Products and Versions

IBM Rational ClearQuest, ClearQuest CM Server component.

Versions 8.0.0.x, 8.0.1.x, 9.0.0.x:

This vulnerability affects only the server component.

Versions 7.1.x.x:

Not affected.

Remediation/Fixes

Refer to the following security bulletins for vulnerability details and information about fixes addressed by IBM HTTP Server (IHS),which is shipped with IBM Rational ClearQuest.

Principal Product and Version(s) Affected Supporting Product and Version Affected Supporting Product Security Bulletin
IBM Rational ClearQuest, versions 8.0.0.x, 8.0.1.x, 9.0.0.x IBM HTTP Server versions 8.5.5, 8.5, 8.0, and 7.0 Security Bulletin: Multiple Denial of Service vulnerabilities with Expat may affect IBM HTTP Server

ClearQuest Versions

|

** Applying the fix**

—|—
8.0.0.x
8.0.1.x
9.0.0.x| Apply the appropriate IBM HTTP Server fix directly to your CM server host. No ClearQuest-specific steps are necessary.

Related

ibm 15
nessus 51
openvas 58
ubuntu 4
centos 2
securityvulns 2
redhat 2
veracode 5
osv 4
f5 5
oraclelinux 2
debian 4
amazon 2
freebsd 3
fedora 6
slackware 3
gentoo 2
ubuntucve 4
prion 6
cve 4
debiancve 4
cloudfoundry 1
mageia 1
alpinelinux 2
mozilla 1
redhatcve 2
zdt 1
suse 1
archlinux 1
thn 1
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2012-0876, CVE-2012-1148, CVE-2016-4472, CVE-2016-0718)
2018-07-10 08:34:12
Security Bulletin: Multiple Denial of Service vulnerabilities with Expat might affect IBM HTTP Server used with IBM Security Network Protection
2018-06-16 21:45:41
Security Bulletin: Multiple denial of service vulnerabilities with Expat may affect IBM HTTP Server shipped with IBM Service Delivery Manager (CVE-2012-0876, CVE-2012-1148, CVE-2016-4472 and CVE-2016-0718)
2018-06-17 22:33:14
nessus
nessus
IBM HTTP Server 7.0.0.0 <= 7.0.0.41 / 8.0.0.0 < 8.0.0.13 / 8.5.0.0 < 8.5.5.11 / 9.0.0.0 < 9.0.0.2 Multiple Vulnerabilities (548231)
2021-01-19 00:00:00
F5 Networks BIG-IP : Expat vulnerabilities (K16949)
2015-09-18 00:00:00
Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : expat vulnerabilities (USN-1527-1)
2012-08-10 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2012-89)
2015-09-08 00:00:00
RedHat Update for expat RHSA-2012:0731-01
2012-06-15 00:00:00
CentOS Update for expat CESA-2012:0731 centos6
2012-07-30 00:00:00
ubuntu
ubuntu
XML-RPC for C and C++ vulnerabilities
2012-09-10 00:00:00
Expat vulnerabilities
2012-08-10 00:00:00
XML-RPC for C and C++ vulnerabilities
2016-06-20 00:00:00
centos
centos
expat security update
2012-06-13 17:07:10
expat security update
2016-11-28 22:32:29
securityvulns
securityvulns
expat security vulnerability
2012-04-02 00:00:00
[ MDVSA-2012:041 ] expat
2012-04-02 00:00:00
redhat
redhat
(RHSA-2012:0731) Moderate: expat security update
2012-06-13 00:00:00
(RHSA-2016:2824) Moderate: expat security update
2016-11-28 17:50:20
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:41:51
Denial Of Service (DoS)
2019-01-15 08:52:02
Denial Of Service (DoS) Or Arbitrary Code Execution
2017-02-01 03:14:43
osv
osv
expat - several
2012-08-06 00:00:00
expat - security update
2016-05-19 00:00:00
CVE-2016-0718
2016-05-26 16:59:00
f5
f5
SOL16949 - Expat vulnerabilities CVE-2012-0876 and CVE-2012-1148
2015-07-10 00:00:00
K16949 : Expat vulnerabilities CVE-2012-0876 and CVE-2012-1148
2015-07-11 00:00:00
K52320548 : Expat vulnerability CVE-2016-0718
2017-09-18 00:00:00
oraclelinux
oraclelinux
expat security update
2012-06-13 00:00:00
expat security update
2016-11-28 00:00:00
debian
debian
[SECURITY] [DSA 2525-1] expat security update
2012-08-06 20:37:11
[SECURITY] [DLA 483-1] expat security update
2016-05-19 20:04:46
[SECURITY] [DSA 3582-1] expat security update
2016-05-18 05:18:57
amazon
amazon
Medium: expat
2012-06-19 15:59:00
Medium: expat
2016-12-15 00:38:00
freebsd
freebsd
Python 2.7 -- multiple vulnerabilities
2017-08-26 00:00:00
python 2.7 -- multiple vulnerabilities
2018-05-01 00:00:00
expat -- denial of service vulnerability on malformed input
2016-05-17 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: expat-2.1.1-2.fc23
2016-06-19 07:27:54
[SECURITY] Fedora 24 Update: expat-2.1.1-2.fc24
2016-06-21 19:27:49
[SECURITY] Fedora 22 Update: expat-2.1.1-2.fc22
2016-07-12 02:27:38
slackware
slackware
[slackware-security] python
2017-09-23 06:33:04
[slackware-security] python
2018-05-04 20:53:50
[slackware-security] expat
2016-12-24 19:24:21
gentoo
gentoo
Expat: Multiple vulnerabilities
2012-09-24 00:00:00
Expat: Multiple vulnerabilities
2017-01-11 00:00:00
ubuntucve
ubuntucve
CVE-2012-0876
2012-07-03 00:00:00
CVE-2012-1148
2012-07-03 00:00:00
CVE-2016-0718
2016-05-17 00:00:00
prion
prion
Code injection
2012-07-03 19:55:00
Memory corruption
2012-07-03 19:55:00
Buffer overflow
2016-05-26 16:59:00
cve
cve
CVE-2012-0876
2012-07-03 19:55:00
CVE-2012-1148
2012-07-03 19:55:00
CVE-2016-0718
2016-05-26 16:59:00
debiancve
debiancve
CVE-2012-0876
2012-07-03 19:55:00
CVE-2012-1148
2012-07-03 19:55:00
CVE-2016-0718
2016-05-26 16:59:00
cloudfoundry
cloudfoundry
USN-2983-1 Expat vulnerability | Cloud Foundry
2016-06-13 00:00:00
mageia
mageia
Updated expat packages fix security vulnerability
2016-05-20 14:38:30
alpinelinux
alpinelinux
CVE-2016-0718
2016-05-26 16:59:00
CVE-2016-5300
2016-06-16 18:59:00
mozilla
mozilla
Out-of-bounds read during XML parsing in Expat library — Mozilla
2016-08-02 00:00:00
redhatcve
redhatcve
CVE-2016-0718
2020-04-05 04:55:48
CVE-2016-5300
2016-06-06 13:18:38
zdt
zdt
ESET Endpoint Antivirus 6 Remote Code Execution Exploit
2017-02-28 00:00:00
suse
suse
Security update for expat (important)
2016-06-07 13:08:02
archlinux
archlinux
expat: arbitrary code execution
2016-05-18 00:00:00
thn
thn
Critical Flaw in ESET Antivirus Exposes Mac Users to Remote Hacking
2017-02-28 03:06:00
JSON
Related for 838CBA92067043DDA704BB0F004792D82A30A7E58F2A62B231AA22AF446EADE8
ibm15nessus51openvas58ubuntu4centos2securityvulns2redhat2veracode5osv4f55oraclelinux2debian4amazon2freebsd3fedora6slackware3gentoo2ubuntucve4prion6cve4debiancve4cloudfoundry1mageia1alpinelinux2mozilla1redhatcve2zdt1suse1archlinux1thn1