305 matches found
AIX is vulnerable to arbitrary command execution due to Perl (CVE-2024-25021 CVE-2023-47038 CVE-2023-47100)
IBM SECURITY ADVISORY First Issued: Wed Feb 21 15:59:59 CST 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/perladvisory8.asc Security Bulletin: AIX is vulnerable to arbitrary command execution due to Perl CVE-2024-25021,...
Multiple vulnerabilities in IBM Java SDK affect AIX
IBM SECURITY ADVISORY First Issued: Fri Jul 31 09:56:48 CDT 2020 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javaapr2020advisory.asc https://aix.software.ibm.com/aix/efixes/security/javaapr2020advisory.asc...
Vulnerability in BIND affects AIX,Vulnerability in BIND affects VIOS
IBM SECURITY ADVISORY First Issued: Mon Apr 25 10:06:21 CDT 2016 |Updated: Wed Dec 6 10:17:27 CST 2017 |Update: Changed impacted fileset for AIX 7.2 from bos.net.tcp.client | to bos.net.tcp.bindutils. The most recent version of this document is available here:...
Multiple vulnerabilities in IBM Java SDK affect AIX
IBM SECURITY ADVISORY First Issued: Thu Dec 10 08:51:54 CST 2015 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javaoct2015advisory.asc https://aix.software.ibm.com/aix/efixes/security/javaoct2015advisory.asc...
There is a vulnerability in OpenSSL used by AIX.
IBM SECURITY ADVISORY First Issued: Thu Jan 6 09:14:51 CST 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/openssladvisory34.asc https://aix.software.ibm.com/aix/efixes/security/openssladvisory34.asc...
Open Source RSyslog vulnerability
IBM SECURITY ADVISORY First Issued: Fri Nov 14 03:31:13 PM CST 2014 | Updated: Mon Dec 01 10:21:50 AM CST 2014 | Update: Fileset name incorrect in lslpp command The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/rsyslogadvisory.asc...
AIX OpenSSL Denial of Service due to double free and others
IBM SECURITY ADVISORY First Issued: The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/openssladvisory10.asc https://aix.software.ibm.com/aix/efixes/security/openssladvisory10.asc...
AIX WPAR vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Thu Mar 6 11:54:14 CST 2014 | Updated: Tue Apr 8 09:03:53 CDT 2014 | Update: File set level for affected vwpar.53.rte corrected The most recent version of this document is available here:...
There is a vulnerability in BIND that affects AIX for VIOS.,There is a vulnerability in BIND that affects AIX.
IBM SECURITY ADVISORY First Issued: Tue Mar 1 08:41:32 CST 2022 |Updated: Wed Mar 16 11:31:17 CDT 2022 |Update: New iFixes provided for all AIX and VIOS levels. | The previous iFixes were not cumulative, and the new iFixes are | intended to supplant the previous fixes. The most recent version of...
Vulnerabilities in LibXML2 affect AIX,Vulnerabilities in LibXML2 affect VIOS
IBM SECURITY ADVISORY First Issued: Mon Feb 22 08:06:13 CST 2016 |Updated: Thu Aug 11 12:11:35 CDT 2016 |Update: Changed the iFix name for the AIX 7.1.3 fix. No changes relevant | to AIX 7.1.3 were made to the fix. The most recent version of this document is available here:...
Multiple vulnerabilities in IBM Java SDK affect AIX
IBM SECURITY ADVISORY First Issued: Tue Nov 3 15:29:58 CST 2020 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javajuly2020advisory.asc https://aix.software.ibm.com/aix/efixes/security/javajuly2020advisory.asc...
Multiple vulnerabilities in current releases of the IBM SDK Java Technology Edition
IBM SECURITY ADVISORY First Issued: Mon Aug 18 14:04:26 CDT 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javajul2014advisory.asc https://aix.software.ibm.com/aix/efixes/security/javajul2014advisory.asc...
Multiple Java vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Wed Dec 11 10:53:34 CST 2013 | Updated: Mon Feb 3 10:36:58 CST 2014 | Updated: Sections II and III modifications | Updated: Includes VIOS The most recent version of this document is available here:...
Multiple OpenSSL vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Wed Mar 21 13:02:49 CDT 2012 |Updated: Thu Mar 22 09:06:21 CDT 2012 |Added VIOS release reference |Updated: Tue Jun 5 11:06:56 CDT 2012 |Corrected FIPS version The most recent version of this document is available...
AIX Java Multiple Vulnerabilities (Oracle Java 2014 CPU)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Thu Mar 6 13:24:59 CST 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javajan2014advisory.asc...
AIX is vulnerable to denial of service due to ISC BIND
IBM SECURITY ADVISORY First Issued: Tue Jul 18 08:40:23 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/bindadvisory23.asc Security Bulletin: AIX is vulnerable to denial of service due to ISC BIND CVE-2022-3094, CVE-2022-3736,...
Vulnerability in BIND affects AIX,Vulnerability in BIND affects VIOS
IBM SECURITY ADVISORY First Issued: Thu Aug 13 10:35:36 CDT 2015 |Updated: Mon Aug 17 09:11:49 CDT 2015 |Update: Added AIX 5.3 vulnerability information The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/bind9advisory8.asc...
AIX is affected by a denial of service (CVE-2024-0397) and information disclosure (CVE-2024-4032 CVE-2024-37891) due to Python
IBM SECURITY ADVISORY First Issued: Tue Sep 17 16:13:13 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/pythonadvisory12.asc Security Bulletin: AIX is affected by a denial of service CVE-2024-0397 and information disclosure...
AIX OpenSSL Vulnerabilities (Multiple CVEs)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Wed Jun 11 06:39:27 CDT 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/openssladvisory9.asc...
AIX ptrace Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Fri May 2 09:58:11 CDT 2014 | Updated: Tue May 20 14:12:02 CDT 2014 | Update: VIOS level clarification | Update: Corrected APARs | Update: New tar file with missing Iterim Fix The most recent version of this documen...
AIX OpenSSH Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Fri Feb 21 11:19:24 CDT 2014 | Updated: Wed Apr 16 17:55:12 CDT 2014 | Update: Clarified the affected OpenSSH version The most recent version of this document is available here:...
Multiple vulnerabilities in IBM Java SDK affect AIX
IBM SECURITY ADVISORY First Issued: Tue Jul 11 10:46:27 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/javajul2023advisory.asc Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX...
Arbitary file overwrite symlink in libodm
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Thu Jun 20 13:00:02 CDT 2012 Updated: Mon Oct 29 11:43:29 CDT 2012 Update: IFIX and CSUM for 6100-07-04 Update: New ifixes for the latest SP's Updated: Thu May 23 11:04:10 CDT 2014 Update: New APAR/Interim Fixes...
AIX is vulnerable to unauthorized file access and arbitrary code execution due to OpenSSH
IBM SECURITY ADVISORY First Issued: Wed Aug 23 08:36:37 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/opensshadvisory15.asc Security Bulletin: AIX is vulnerable to unauthorized file access and arbitrary code execution due to...
AIX is affected by multiple vulnerabilities due to Python (CVE-2023-52425 CVE-2023-52426 CVE-2023-6597)
IBM SECURITY ADVISORY First Issued: Thu Apr 11 15:29:16 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/pythonadvisory8.asc Security Bulletin: AIX is affected by multiple vulnerabilities due to Python CVE-2023-52425,...
Vulnerabilities in the AIX kernel
IBM SECURITY ADVISORY First Issued: Wed Feb 23 13:03:11 CST 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/kerneladvisory3.asc https://aix.software.ibm.com/aix/efixes/security/kerneladvisory3.asc...
Multiple vulnerabilities cURL libcurl affect AIX
IBM SECURITY ADVISORY First Issued: Thu Jun 29 09:35:59 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/curladvisory2.asc Security Bulletin: Multiple vulnerabilities cURL libcurl affect AIX...
There are vulnerabilities in BIND that impact AIX.,There are vulnerabilities in BIND that impact VIOS.
IBM SECURITY ADVISORY First Issued: Fri Aug 21 15:48:15 CDT 2020 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/bindadvisory17.asc https://aix.software.ibm.com/aix/efixes/security/bindadvisory17.asc...
AIX cmdlvm vulnerability,VIOS cmdlvm vulnerability
IBM SECURITY ADVISORY First Issued: Tue Jan 13 12:44:56 AM CST 2015 Updated: Tue Jan 20 08:37:23 CST 2015 Update: Added Acknowledgment Updated: Fri Jan 30 09:02:40 CST 2015 Update: Updated iFixes |Updated: Tue Feb 17 14:15:48 CST 2015 |Update: Updated 6.1.8 and 7.1.2 SPs The most recent version o...
Vulnerability in AIX bind,Vulnerability in VIOS bind
IBM SECURITY ADVISORY First Issued: Tue Feb 24 11:33:18 CST 2015 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/bind9advisory7.asc https://aix.software.ibm.com/aix/efixes/security/bind9advisory7.asc...
Multiple vulnerabilities in current releases of the IBM SDK Java Technology Edition; issues in the Oracle October 2014 Critical Patch Update plus the POODLE SSLv3 vulnerability and
IBM SECURITY ADVISORY First Issued: Fri Nov 14 15:40:48 CST 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/javaoct2014advisory.asc https://aix.software.ibm.com/aix/efixes/security/javaoct2014advisory.asc...
Multiple vulnerabilities in IBM Java SDK affect AIX
IBM SECURITY ADVISORY First Issued: Mon Dec 18 09:27:21 CST 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/javadec2023advisory.asc Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX...
Vulnerability in BIND affects AIX,Vulnerability in BIND affects VIOS
IBM SECURITY ADVISORY First Issued: Thu Feb 25 09:58:38 CST 2016 |Updated: Wed Dec 6 10:17:27 CST 2017 |Update: Changed the impacted fileset for AIX 7.2 from bos.net.tcp.client | to bos.net.tcp.bindutils. The most recent version of this document is available here:...
Vulnerability in netstat affects AIX,Vulnerability in netstat affects VIOS
IBM SECURITY ADVISORY First Issued: Mon Oct 12 14:17:27 CDT 2015 |Updated: Fri Oct 16 16:41:29 CDT 2015 |Update: New iFixes provided The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/netstatadvisory.asc...
AIX ftp vulnerability
IBM SECURITY ADVISORY First Issued: Thu Oct 18 09:50:27 CDT 2012 The most recent version of this document is available here: | Updated: Fri Feb 8 11:58:57 CDT 2013 | Update: Updated Sections I and V: Description and Workaround | Update: New ifixes for latest SP's | Updated: Thu Dec 12 12:55:11 CS...
AIX is vulnerable to sensitive information exposure due to Perl - CVE-2023-2331486,AIX is vulnerable to sensitive information exposure due to Perl - CVE-2023-31484
IBM SECURITY ADVISORY First Issued: Thu Oct 5 10:44:37 CDT 2023 |Updated: Thu Nov 2 09:55:16 CDT 2023 |Update: iFixes are now available for Perl 5.28.1 and 5.34.1. | Perl version 5.28.1.7 and higher, and Perl version 5.34.1.4 and higher, | have a dependency on OpenSSL 3.0. | The iFixes are offere...
AIX is vulnerable to a denial of service due to lpd,IX is vulnerable to a denial of service due to lpd
IBM SECURITY ADVISORY First Issued: Thu Dec 15 10:28:27 CST 2022 |Updated: Fri Mar 17 09:36:03 CDT 2023 |Update: Corrected the affected upper fileset levels for AIX 7.1 TL5 to show | that SP11 is affected. Corrected the affected upper fileset levels for | AIX 7.3 TL0 to show that SP03 is affected...
Vulnerability in AIX X-Server,Vulnerability in VIOS X-Server
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Tue Jan 21 14:01:02 CST 2014 | Updated: Tue Feb 4 12:58:33 CDT 2014 | Update: Fix installation updated | Update: Ifixes for 6.1.9 and 7.1.3 and VIOS http://aix.software.ibm.com/aix/efixes/security/xorgadvisory2.asc...
Vulnerability in AIX bind
IBM SECURITY ADVISORY First Issued: Tue Oct 23 10:13:27 CDT 2012 | Updated: Mon Jan 28 12:29:56 CDT 2013 | Update: New ifixes for the latest SP's | Updated: Thu Dec 12 12:55:11 CST 2013 | Update: 1. Added KEYs for parsing purposes | 2. Moved to OpenSSL signature...
Vulnerability in AIX system call
IBM SECURITY ADVISORY First Issued: Thu Jul 26 12:59:02 CDT 2012 | Update: Wed Oct 24 8:49:40 CDT 2012 | Update: Updated interim fix file names | Update: New ifixes for the latest SP's | Updated: Thu Dec 12 12:55:11 CST 2013 | Update: 1. Added KEYs for parsing purposes | 2. Moved to OpenSSL...
AIX is vulnerable to arbitrary code execution due to libxml2 (CVE-2022-40303 and CVE-2022-40304)
IBM SECURITY ADVISORY First Issued: Wed Feb 8 13:18:47 CST 2023 |Updated: Thu May 4 13:36:14 CDT 2023 |Update: Corrected the affected upper fileset levels for AIX 7.2 TL5 to | show that SP06 is affected. Corrected the affected upper fileset | levels for AIX 7.3 TL1 to show that SP02 is affected...
Vulnerability in AIX bind
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Fri Jul 13 13:28:29 CDT 2012 The most recent version of this document is available here: | Updated: Thu Oct 25 05:15:16 CDT 2012 | Update: New ifixes for the latest SP's | Update: Corrected file name...
AIX is vulnerable to a denial of service (CVE-2024-2398) and security restrictions bypass (CVE-2024-2466 CVE-2024-2004) due to cURL libcurl
IBM SECURITY ADVISORY First Issued: Thu Aug 22 15:50:03 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/curladvisory6.asc Security Bulletin: AIX is vulnerable to a denial of service CVE-2024-2398 and security restrictions bypas...
AIX is vulnerable to privilege escalation and denial of service
IBM SECURITY ADVISORY First Issued: Mon Dec 11 13:23:17 CST 2023 |Updated: Fri Feb 2 13:43:05 CST 2024 |Update: New iFixes are available. The new iFixes resolve a technical issue | with print queue status. Both sets of iFixes new and original resolve | the security vulnerabilities described in th...
Multiple vulnerabilities in IBM Java SDK affect AIX
IBM SECURITY ADVISORY First Issued: Fri May 19 10:29:25 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/javamay2023advisory.asc Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX...
Vulnerability in gencore affects AIX,Vulnerability in gencore affects VIOS
IBM SECURITY ADVISORY First Issued: Tue Jan 19 16:15:13 CST 2021 |Updated: Tue Mar 30 09:09:39 CDT 2021 |Update: iFix now provided for AIX 7200-04-03 and VIOS 3.1.1.30. The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/gencoreadvisory.asc...
AIX Malloc vulnerability,VIOS Malloc vulnerability
IBM SECURITY ADVISORY |Updated: Tue Mar 10 11:31:13 CDT 2015 |Update: Changed affected upper file set levels for 6.1.8 and | 7.1.2. The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/mallocadvisory.asc...
AIX is affected by multiple vulnerabilities in Python
IBM SECURITY ADVISORY First Issued: Thu Jul 28 13:12:18 CDT 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/pythonadvisory.asc https://aix.software.ibm.com/aix/efixes/security/pythonadvisory.asc...
There is a vulnerability in the AIX trace facility.
IBM SECURITY ADVISORY First Issued: Tue Jun 15 19:09:20 CDT 2021 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/traceadvisory.asc https://aix.software.ibm.com/aix/efixes/security/traceadvisory.asc...
Multiple Security vulnerabilities in IBM NAS
IBM SECURITY ADVISORY First Issued : Thu Aug 28 03:15:00 CDT 2014 | Updated: Fri Sep 5 01:11:34 CDT 2014 | Update: The same ifix with a packaging change has been added in | Update: "A. FIXES" section. The most recent version of this document is available here:...