IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Image Construction and Composition Tool (CVE-2014-3566 and CVE-2014-6457)
|
System information
|
|
|
Affected software |
IBM |
Description
|
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 that is used by IBM PureApplication System. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption (POODLE) SSLv3 vulnerability (CVE-2014-3566). These were disclosed as part of the IBM Java SDK updates in October 2014. CVE(s): CVE-2014-6457 and CVE-2014-3566 Affected product(s) and affected version(s): IBM Image Construction and Composition Tool v2.2.1.3 IBM Image
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_java_sdk_affect_ibm_image_construction_and_composition_tool_cve_2014_3566_and_cve_2014_6457?lang=en_us |
Standar resources
|
Property |
Value |
CVE |
CVE-2014-3566 ,CVE-2014-6457 ,CVE-2014-8917 ,CVE-2015-3456 ,CVE-2015-0286 ,CVE-2015-0289 ,CVE-2015-0209 and CVE-2014-0227. |