Security Bulletin: A vulnerability in ghostscript affects PowerKVM

Summary PowerKVM is affected by a vulnerability in ghostscript. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2017-8291 DESCRIPTION: Artifex Ghostscript could allow a remote attacker to execute arbitrary commands on the system. By using .rsdparams type confusion with ...

Security Bulletin: A vulnerability in wget affects PowerKVM

Summary PowerKVM is affected by a vulnerability in wget. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2016-4971 DESCRIPTION: GNU wget could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted HTTP redirect message...

Security Bulletin: A vulnerability in pigz affects PowerKVM (CVE-2015-1191)

Summary PowerKVM is affected by a vulnerability in pigz. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2015-1191 DESCRIPTION: pigz could allow a remote attacker to traverse directories on the system, caused by an error in pigz.c. An attacker could send a...