Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus are affected by a vulnerability in the IBM SDK, Java Technology Edition [CVE-2023-30441]

Summary IBM App Connect Enterprise and IBM Integration Bus are affected by a vulnerability in the IBM SDK, Java Technology Edition CVE-2023-30441. A workaround has been provided. Vulnerability Details CVEID:CVE-2023-30441 DESCRIPTION: IBM Runtime Environment, Java Technology Edition IBMJCEPlus an...

Security Bulletin: CVE-2023-30441 affects IBM® SDK, Java™ Technology Edition

Summary CVE-2023-30441 affects IBM SDK, Java Technology Edition. An update has been released to address the vulnerability. Vulnerability Details CVEID:CVE-2023-30441 DESCRIPTION: IBM Runtime Environment, Java Technology Edition IBMJCEPlus and JSSE components could expose sensitive information usi...

SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2020:2461-1)

This update for java-180-ibm fixes the following issues : Update to Java 8.0 Service Refresh 6 Fix Pack 15 bsc1175259, bsc1174157 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14556 CVE-2020-14621 CVE-2020-14593 CVE-2020-14583 CVE-2019-17639 - Class Libraries : -...

Security Bulletin: InfoSphere Streams is possibly affected by vulnerabilities in the IBM® SDK, Java™ Technology Edition (CVE-2014-0453 and CVE-2014-0460)

Summary The IBM® Developers Kit, Java™ Technology Edition that is shipped with InfoSphere Streams has security vulnerabilities two of which could potentially affect InfoSphere Streams. Other vulnerabilities could be exposed by the use of custom Java code in InfoSphere Streams applications...

IBM WebSphere Application Server 7.0 < 7.0.0.33 Multiple Vulnerabilities

Binary data 9699.prm...

IBM WebSphere Application Server 7.0 < Fix Pack 33 Multiple Vulnerabilities

IBM WebSphere Application Server 7.0 prior to Fix Pack 33 is running on the remote host. It is, therefore, affected by the following vulnerabilities : - A cross-site scripting flaw exists within the Administration Console, where user input is improperly validated. This could allow a remote...

CVE-2014-0878

The IBMSecureRandom component in the IBMJCE and IBMSecureRandom cryptographic providers in IBM SDK Java Technology Edition 5.0 before Service Refresh 16 FP6, 6 before Service Refresh 16, 6.0.1 before Service Refresh 8, 7 before Service Refresh 7, and 7R1 before Service Refresh 1 makes it easier f...

CVE-2014-0878

CVE-2014-0878 affects IBMJCE/IBMSecureRandom in IBM SDK Java Technology Edition (various service refresh levels: 5.0 SR16 FP6 and earlier; 6 SR16 and earlier; 6.0.1 SR8; 7 SR7; 7R1 SR1). The vulnerability allows context-dependent attackers to predict the RNG output, undermining cryptographic prot...

CVE-2014-0878

The IBMSecureRandom component in the IBMJCE and IBMSecureRandom cryptographic providers in IBM SDK Java Technology Edition 5.0 before Service Refresh 16 FP6, 6 before Service Refresh 16, 6.0.1 before Service Refresh 8, 7 before Service Refresh 7, and 7R1 before Service Refresh 1 makes it easier f...

SuSE 10 Security Update : IBM Java 1.4.2 (ZYPP Patch Number 6523)

IBM Java 1.4.2 was updated to SR13 FP1. It fixes following two security issues: CVE-2009-2625: A vulnerability in the Java Runtime Environment JRE with parsing XML data might allow a remote client to create a denial-of-service condition on the system that the JRE runs on. - A vulnerability in how...

SuSE 10 Security Update : IBM Java 1.4.2 (ZYPP Patch Number 6508)

IBM Java 1.4.2 was updated to SR13 FP1. It fixes following two security issues: CVE-2009-2625: A vulnerability in the Java Runtime Environment JRE with parsing XML data might allow a remote client to create a denial-of-service condition on the system that the JRE runs on. - A vulnerability in how...

SuSE 11 Security Update : IBM Java 1.4.2 (SAT Patch Number 1336)

IBM Java 1.4.2 was updated to SR13 FP1. It fixes following two security issues: CVE-2009-2625: A vulnerability in the Java Runtime Environment JRE with parsing XML data might allow a remote client to create a denial-of-service condition on the system that the JRE runs on. - A vulnerability in how...

SuSE9 Security Update : IBM Java2 JRE and SDK (YOU Patch Number 12511)

IBM Java 1.4.2 was updated to SR13 FP1. It fixes following two security issues : - A vulnerability in the Java Runtime Environment JRE with parsing XML data might allow a remote client to create a denial-of-service condition on the system that the JRE runs on. CVE-2009-2625 - A vulnerability in h...