IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect InfoSphere Streams (CVE-2014-6457, CVE-2014-3566, CVE-2014-3065)
|
System information
|
| |
|
|
Affected software |
IBM |
Description
|
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 Service Refresh 16 Fix Pack 1 and Version 7R1 Service Refresh 1 Fix Pack 1 that is used by InfoSphere Streams. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption (POODLE) SSLv3 vulnerability (CVE-2014-3566). These were disclosed as part of the IBM Java SDK updates in October 2014. CVE(s): CVE-2014-6457, CVE-2014-3566 and CVE-2014-3065 Affected product(s) and affected
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_java_sdk_affect_infosphere_streams_cve_2014_6457_cve_2014_3566_cve_2014_30651?lang=en_us |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2014-3566 ,CVE-2014-6457 ,CVE-2014-3065 ,CVE-2014-3569 ,CVE-2014-3570 ,CVE-2014-3571 ,CVE-2014-3572 ,CVE-2014-8275 ,CVE-2015-0204 ,CVE-2015-0205 ,CVE-2015-0206 ,CVE-2015-0138 ,CVE-2015-0410 ,CVE-2014-6593 and CVE-2015-0400. |
