Security Bulletin: Multiple vulnerabilities in OpenSSL affect MegaRAID Storage Manager (CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3510, CVE-2014-3567)
|
System information
|
|
|
Affected software |
IBM |
Description
|
There are multiple vulnerabilities in OpenSSL that is used by MegaRAID Storage Manager. OpenSSL vulnerabilities along with SSL 3 Fallback protection (TLS_FALLBACK_SCSV) were disclosed on October 15, 2014 and on August 6, 2014 by the OpenSSL Project. OpenSSL is used by MegaRAID Storage Manager. MegaRAID Storage Manager has addressed the applicable CVEs and included the SSL 3.0 Fallback protection (TLS_FALLBACK_SCSV) provided by OpenSSL. CVE(s): CVE-2014-3505, CVE-2014-3506, CVE-2014-3507,
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_multiple_vulnerabilities_in_openssl_affect_megaraid_storage_manager_cve_2014_3505_cve_2014_3506_cve_2014_3507_cve_2014_3510_cve_2014_3567?lang=en_us |
Standar resources
|
Property |
Value |
CVE |
CVE-2014-3505 ,CVE-2014-3506 ,CVE-2014-3507 ,CVE-2014-3510 ,CVE-2014-3567 ,CVE-2015-1781 ,CVE-2013-7423 ,CVE-2015-0255 ,CVE-2015-0488 ,CVE-2015-0138 ,CVE-2015-0204 and CVE-2015-2808. |