Vulnerability Bulletins

IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM Sterling Connect:Direct for UNIX (CVE-2015-0286, CVE-2015-0287, CVE-2015-0289, CVE-2015-0292, CVE-2015-0293, CVE-2015-0209, CVE-2015-0288)

System information
   
Affected software IBM

Description
OpenSSL vulnerabilities were disclosed on March 19, 2015 by the OpenSSL Project. OpenSSL is used by Sterling Connect:Direct for UNIX. Sterling Connect:Direct for UNIX has addressed the applicable CVEs. CVE(s): CVE-2015-0286, CVE-2015-0287, CVE-2015-0289, CVE-2015-0292, CVE-2015-0293, CVE-2015-0209 and CVE-2015-0288 Affected product(s) and affected version(s): IBM Sterling Connect:Direct for Unix 4.1.0 IBM Sterling Connect:Direct for Unix 4.0.0 Refer to the following reference URLs

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerabilities_in_openssl_affect_ibm_sterling_connect_direct_for_unix_cve_2015_0286_cve_2015_0287_cve_2015_0289_cve_2015_0292_cve_2015_0293_cve_2015_0209_cve_2015_0288?lang=

Standar resources
Property Value
CVE CVE-2015-0286 ,CVE-2015-0287 ,CVE-2015-0289 ,CVE-2015-0292 ,CVE-2015-0293 ,CVE-2015-0209 ,CVE-2015-0288 ,CVE-2015-0208 and CVE-2014-9295.

Version history
Version Comments Date
1.0 Advisory issued 2015-04-21
Ministerio de Defensa
CNI
CCN
CCN-CERT