Security Bulletin: Vulnerability in libxml, openssh, PAM, Firefox, affects IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Vulnerability in libxml, openssh, PAM, Firefox, affects IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance CVE-2015-1819, CVE-2015-3238, CVE-2015-5600 and others. Vulnerability Details CVEID: CVE-2015-1819 DESCRIPTION: Libxml is vulnerable to a denial of service, caused by...

Security Bulletin: Multiple vulnerabilities in Firefox, affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance (CVE-2015-4497, CVE-2015-4498)

Summary Security Bulletin: Multiple vulnerabilities in Firefox, affect IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance CVE-2015-4497, CVE-2015-4498. Vulnerability Details CVEID: CVE-2015-4497 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code o...

Security Bulletin: Vulnerability in qemu-kvm affects IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Security Bulletin: Vulnerability in qemu-kvm affects IBM SmartCloud Provisioning for IBM Software Virtual Appliance CVE-2015-5165. Vulnerability Details CVEID: CVE-2015-5165 DESCRIPTION: Xen could allow a local attacker to obtain sensitive information, caused by the improper validation of...

Security Bulletin: Multiple vulnerabilities in unzip, krb5, tomcat, affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in unzip, krb5, tomcat, affect IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance CVE-2014-8139, CVE-2014-8140, CVE-2014-8141, CVE-2014-9636, CVE-2014-5355, CVE-2014-9421, CVE-2014-5352, CVE-2014-5353, CVE-2014-9422, CVE-2014-0227. Vulnerability...

Security Bulletin: Venom vulnerability affects IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance

Summary IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance is vulnerable to Venom: Virtualized Environment Neglected Operation Manipulation CVE-2015-3456. Vulnerability Details CVE-ID: CVE-2015-3456 DESCRIPTION: Open Source QEMU Quick Emulator is vulnerable to a buffer overflow,...

Security Bulletin: Multiple vulnerabilities in bind, glibc, net-snmp, spice affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in Bind, glibc, net-snmp, spice affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance CVE-2015-5722, CVE-2015-5621, CVE-2014-3565, CVE-2014-8121, CVE-2015-3247. Vulnerability Details CVEID: CVE-2015-5722 DESCRIPTION: ISC BIND is vulnerable to a...

Security Bulletin: Multiple vulnerabilities in openssl affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in openssl affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance CVE-2014-8176 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-3216 CVE-2015-1788. Vulnerability Details CVEID: CVE-2014-8176 DESCRIPTION: OpenSSL could allow a remote...

Security Bulletin: Multiple vulnerabilities in NTP, Hivex, glibc, libuser, BIND affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in NTP, Hivex, glibc, libuser, BIND, affect IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance CVE-2014-9297, CVE-2014-9298, CVE-2014-9273, CVE-2013-7424, CVE-2015-3245, CVE-2015-3246, CVE-2015-5477. Vulnerability Details CVEID: CVE-2014-9297...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK including Logjam affect SmartCloud Provisioning for IBM Software Virtual Appliance

Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition, Version 6 that is by SmartCloud Provisioning for IBM Software Virtual Appliance. These issues were disclosed as part of the IBM Java SDK updates in July 2015. This bulletin also addresses the Logjam Attack on TLS...

Security Bulletin: Multiple vulnerabilities in Firefox affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in Firefox affect IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance CVE-2015-4495, CVE-2015-0797, and others. Vulnerability Details CVEID: CVE-2015-0797 DESCRIPTION: Mozilla Firefox and Thunderbird are vulnerable to a buffer overflow, caused by...

Security Bulletin: Multiple vulnerabilities in cups, curl, libxfont affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Multiple vulnerabilities in cups, curl, libxfont affect IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance CVE-2014-9679, CVE-2015-1158, CVE-2015-1159, CVE-2014-3613, CVE-2014-3707, CVE-2014-8150, CVE-2015-3143, CVE-2015-3148,CVE-2015-1802, CVE-2015-1803, CVE-2015-1804...

Security Bulletin: Vulnerability in gdk-pixbuf affects IBM SmartCloud Provisioning for IBM Software Virtual Appliance

Summary Vulnerability in gdk-pixbuf affects IBM SmartCloud Provisioning 2.1 for IBM Software Virtual Appliance CVE-2015-4491. Vulnerability Details CVEID: CVE-2015-4491 DESCRIPTION: Mozilla Firefox is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by gdk-pixbuf...

Security Bulletin: Vulnerability in rsyslog affects SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance (CVE-2014-3634)

Summary Vulnerability in rsyslog package affects SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance CVE-2014-3634. Vulnerability Details CVEID: CVE-2014-3634 DESCRIPTION: RSyslog and sysklogd are vulnerable to a denial of service. By sending a specially-crafted message, a...

Security Bulletin: Multiple security vulnerabilities in IBM SDK, Java™ Technology Edition affect SmartCloud Provisioning (CVE-2014-4263, CVE-2014-4244)

Summary Multiple security vulnerabilities exist in the IBM SDK, Java™ Technology Edition that is shipped with IBM SmartCloud Provisioning CVE-2014-4263, CVE-2014-4244. Vulnerability Details CVEID: CVE-2014-4263 DESCRIPTION: An unspecified vulnerability in Oracle Java SE and JRockit related to the...

Security Bulletin: Vulnerabilities in Firefox affect IBM SmartCloud Provisioning 2.1 for Software Virtual Appliance (CVE-2014-1562, CVE-2014-1567)

Summary Vulnerabilities in Firefox affect IBM SmartCloud Provisioning 2.1 for Software Virtual Appliance CVE-2014-1562, CVE-2014-1567. Vulnerability Details CVEID: CVE-2014-1562 DESCRIPTION: Mozilla Firefox and Thunderbird might allow a remote attacker to execute arbitrary code on the system, whi...

Security Bulletin: Vulnerability in GNU C library (glibc) affects SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance (CVE-2015-0235)

Summary GNU C library glibc vulnerability that has been referred to as GHOST affects SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance CVE-2015-0235. IBM recommends that you review your entire environment to identify vulnerable releases of the above packages including your...

Security Bulletin: SmartCloud Provisioning - Django vulnerabilities reported in April 2014 X-Force Report

Summary SmartCloud Provisioning - Django vulnerabilities reported in April 2014 X-Force Report CVE-2014-0473, CVE-2014-0474,CVE-2014-0472 Vulnerability Details CVE-ID: CVE-2014-0473 DESCRIPTION: Django is vulnerable to cross-site request forgery, caused by an error when handling caching of...

Security Bulletin: Vulnerabilities in Django affect SmartCloud Provisioning (CVE-2014-0480, CVE-2014-0481, CVE-2014-0482, CVE-2014-0483)

Summary Vulnerabilities found in Django as per August 2014 X-Force report CVE-2014-0480, CVE-2014-0481, CVE-2014-0482, CVE-2014-0483 affect SmartCloud Provisioning 2.3. SmartCloud Provisioning 2.3 is shipped with Django. Securities vulnerabilities have been discovered in Django that may affect...

Security Bulletin: SmartCloud Provisioning - Django vulnerabilities reported in May 2014 X-Force Report

Summary SmartCloud Provisioning - Django vulnerabilities reported in May 2014 X-Force Report CVE-2014-1418, CVE-2014-3730. Vulnerability Details SmartCloud Provisioning 2.3 is shipped with Open Source Django. Securities vulnerabilities have been discovered in Django, which affect SmartCloud...

Security Bulletin: Multiple security vulnerabilities in IBM SDK, Java™ Technology Edition affect IBM SmartCloud Provisioning (CVE-2014-0878, CVE-2014-0460, CVE-2014-0453).

Summary Multiple security vulnerabilities exist in IBM SDK, Java Technology Edition and affect IBM SmartCloud Provisioning CVE-2014-0878, CVE-2014-0460, CVE-2014-0453 . IBM SDK, Java Technology Edition has released patch updates with security vulnerabilities fixes. IBM SDK, Java Technology Editio...