Security Bulletin: A vulnerability in IBM WebSphere Application Server affects IBM PureApplication System

Summary A vulnerability in IBM WebSphere Application Server affects PureApplication System. IBM PureApplication System has addressed this vulnerability. Vulnerability Details CVEID: CVE-2018-1901 DESCRIPTION: IBM WebSphere Application Server could allow a remote attacker to temporarily gain...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM OS Images for Red Hat Linux Systems (April 2019 updates)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that are used by the OS Images for IBM PureApplication System. These issues were disclosed as part of the IBM Java SDK quarterly updates in April 2019. OS Images have addressed the applicable CVEs. Vulnerability Detai...

Security Bulletin: IBM PureApplication System is affected by a GPFS vulnerability (CVE-2018-1783)

Summary There is a vulnerability in the GPFS component that is used by IBM PureApplication System. IBM has released Version 2.2.5.3 for IBM PureApplication System, in response to CVE-2018-1783. IBM PureApplication System provides a GPFS pattern and addressed the applicable CVE. Vulnerability...

Security Bulletin: Vulnerability in Python affects IBM OS Images for Red Hat Linux Systems

Summary Security vulnerabilities are reported when using IBM OS Image for Red Hat Linux Systems RHEL 7.2 V3.0.6.0. Vulnerability Details CVEID: CVE-2016-2183 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the DES/3DES cipher, used as a pa...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM OS Images for Red Hat Linux Systems (October 2018 updates)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, used by the OS Images for IBM PureApplication System. These issues were disclosed as part of the IBM Java SDK quarterly updates in October 2018, and the following vulnerabilities have been addressed...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM PureApplication System (July and October 2018 updates)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, used by the IBM PureApplication System. These issues were disclosed as part of the IBM Java SDK quarterly updates in July and October 2018, and the following vulnerabilities have been addressed...

Security Bulletin: IBM PureApplication System is affected by a vulnerability (CVE-2018-3639) pertaining third-party CPU hardware

Summary IBM has released Version 2.2.5.3 for IBM PureApplication System, which includes IBM OS image for AIX Systems and IBM OS images for Red Hat Linux Systems based deployments, to address a vulnerability in response to CVE-2018-3639. IBM PureApplication System has addressed the following...

Security Bulletin: IBM PureApplication System is affected by a vulnerability in VMWare component (CVE-2018-6974)

Summary A vulnerability is reported in the VMWare component, and this component is used by IBM PureApplication System. IBM has released Version 2.2.5.3 for IBM PureApplication System, in response to CVE-2018-6974. IBM PureApplication System has addressed the applicable CVE. Vulnerability Details...

Security Bulletin: Public disclosed GNU glibc vulnerabilities used by IBM OS Images for RedHat Linux in IBM PureApplication Systems (CVE-2017-16997 CVE-2018-1000001)

Summary There are public disclosed vulnerabilities from GNU glibc that are used by the OS Images for IBM PureApplication System. To address the vulnerabilities in response to CVE-2017-16997 and CVE-2018-1000001, IBM has released Version 2.2.5.3 for IBM PureApplication System, which includes IBM O...

Security Bulletin: IBM PureApplication System is affected by vulnerabilities in VMWare component (CVE-2018-6981 CVE-2018-6982)

Summary There are vulnerabilities reported in the VMWare component that is used by IBM PureApplication System. IBM has released Version 2.2.5.3 for IBM PureApplication System, in response to CVE-2018-6981 and CVE-2018-6982. The following vulnerabilities have been addressed by IBM PureApplication...

Security Bulletin: IBM PureApplication System is affected by a vulnerability in VMWare component (CVE-2018-6972)

Summary There is a vulnerability in the VMWare component that is used by IBM PureApplication System. The following vulnerability has been addressed. Vulnerability Details CVEID: CVE-2018-6972 DESCRIPTION: VMware ESXi, Workstation, and Fusion are vulnerable to a denial of service, caused by a NULL...

Security Bulletin: Multiple Foreshadow Spectre Variant vulnerabilities affect IBM OS Image for Red Hat Linux Systems in IBM PureApplication System (CVE-2018-3615 CVE-2018-3620 CVE-2018-3646)

Summary There are multiple vulnerabilities that affect the IBM OS Image for Red Hat Linux Systems in IBM PureApplication System. IBM has released Version 2.2.5.3 for IBM PureApplication System, in response to CVE-2018-3615, CVE-2018-3620, and CVE-2018-3646. The products that are identified for th...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM PureApplication System

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition used by IBM PureApplication System. These issues were disclosed as part of the IBM Java SDK quarterly updates in January 2018. IBM PureApplication System has addressed the applicable CVEs. Vulnerability Details CVEID:...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM OS Images for Red Hat Linux Systems, AIX-based, and Windows-based deployments for IBM PureApplication System

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, used by the OS Images for IBM PureApplication System. Java 7 is used by IBM Base OS images. These issues were disclosed as part of the IBM Java SDK updates in April 2018. IBM OS Image for Red Hat Lin...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM PureApplication System

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, used by the IBM PureApplication System. These issues were disclosed as part of the IBM Java SDK updates in April 2018 and the following vulnerabilities have been addressed. Vulnerability Details CVEI...

Security Bulletin: A security vulnerability has been identified in IBM PureApplication System shipped with IBM InfoSphere Information Server Hypervisor edition (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278)

Summary IBM PureApplication System is shipped as a component of IBM InfoSphere Information Server Hypervisor edition. Information about a security vulnerability affecting IBM PureApplication System has been published in a security bulletin. Other than the Information Server Hypervisor edition,...

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server used by IBM PureApplication System (CVE-2017-12613)

Summary The Apache Portable Runtime APR could allow a remote attacker to obtain sensitive information or cause a denial of service. IBM WebSphere Application Server is shipped as a component of IBM PureApplication System. Information about a security vulnerability affecting IBM WebSphere...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK that affect IBM PureApplication System

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, used by the OS Images for IBM PureApplication System. These issues were disclosed as part of the IBM Java SDK updates in Oct 2017. Vulnerability Details CVEID: CVE-2016-9841 DESCRIPTION: zlib is...

Security Bulletin: Open Source GNU glibc Vulnerabilities Security Bulletin: Open Source GNU glibc Vulnerabilities which is used by IBM OS Images for RedHat Linux in IBM PureApplication Systems (CVE-2017-12132)

Summary There are vulnerabilities in the Open Source GNU glibc that is used by the OS Images for IBM PureApplication Software Suite, IBM Bluemix Local System and IBM PureApplication System/Software Vulnerability Details CVEID: CVE-2017-12132 DESCRIPTION: GNU C Library aka glibc or libc6 could all...

Security Bulletin: Open Source OpenSSL Vulnerabilities which is used by IBM PureApplication Systems/Service (CVE-2017-3736 CVE-2017-3738)

Summary There are vulnerabilities in the Open Source OpenSSL that is used by the IBM PureApplication Systems/Service Vulnerability Details CVEID: CVE-2017-3738 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an overflow bug in the AVX2 Montgomery...