2 matches found
Security Bulletin: Securing your products against OpenSSL and TLS vulnerabilities
Question Security Bulletin: Securing your products against OpenSSL and TLS vulnerabilities "Business Unit":"code":"BU059","label":"IBM Software w/o TPS","Product":"code":"SS8NDZ","label":"IBM Aspera","Component":"","Platform":"code":"PF025","label":"Platform Independent","Version":"All...
CVE-2016-2017
CVE-2016-2017 corresponds to a padding-oracle vulnerability in CBC mode decryption affecting OpenSSL. The IBM Aspera bulletin itemizes CVE-2016-2017 within its OpenSSL-related entries and states that OpenSSL versions before 1.0.1t and before 1.0.2h are vulnerable, enabling an attacker to decrypt ...