IBM Security Bulletin: Vulnerabilities in GSKit affect IBM MessageSight (CVE-2015-0159, CVE-2015-0138)
|
System information
|
| |
|
|
Affected software |
IBM |
Description
|
GSKit is an IBM component that is used by IBM MessageSight. The GSKit that is shipped with MessageSight contains multiple security vulnerabilities including the “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. MessageSight has addressed the applicable CVEs. CVE(s): CVE-2015-0138 and CVE-2015-0159 Affected product(s) and affected version(s): IBM MessageSight 1.1, 1.2 Refer to the following reference URLs for remediation and additional
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerabilities_in_gskit_affect_ibm_messagesight_cve_2015_0159_cve_2015_0138?lang=en_us |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2015-0138 ,CVE-2015-0159 ,CVE-2014-6593 and CVE-2015-0410. |
