IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect the IBM Installation Manager and IBM Packaging Utility (CVE-2014-6593 and CVE-2015-0138)
|
System information
|
| |
|
|
Affected software |
IBM |
Description
|
There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Versions 6 and 7 that are used by IBM Installation Manager and IBM Packaging Utility. These issues were disclosed as part of the IBM Java SDK updates in January 2015. This bulletin also addresses the “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. CVE(s): CVE-2015-0138 and CVE-2014-6593 Affected product(s) and affected version(s): IBM
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_java_runtime_affect_the_ibm_installation_manager_and_ibm_packaging_utility_cve_2014_6593_and_cve_2015_0138?lang=en_us |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2014-6593 ,CVE-2015-0138 ,CVE-2015-0400 ,CVE-2015-0410 ,CVE-2014-3566 ,CVE-2014-6585 ,CVE-2014-6591 and CVE-2015-0383. |
