IBM Security Bulletin: IBM Security Access Manager for Web is affected by an OpenSSL vulnerability (CVE-2015-1788 )
|
System information
|
|
|
Affected software |
IBM |
Description
|
OpenSSL is vulnerable to a denial of service, caused by an error when processing an ECParameters structure over a specially crafted binary polynomial field. IBM Security Access Manager for Web uses GSKit, which is affected by this vulnerability. CVE(s): CVE-2015-1788 Affected product(s) and affected version(s): IBM Security Access Manager for Web version 7.0 software IBM Security Access Manager for Web version 7.0 appliance, all firmware versions IBM Security Access Manager for Web
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_security_access_manager_for_web_is_affected_by_an_openssl_vulnerability_cve_2015_1788?lang=en_us |
Standar resources
|
Property |
Value |
CVE |
CVE-2015-1788 ,CVE-2015-4000 ,CVE-2015-2808 ,CVE-2015-1916 ,CVE-2015-0204 and CVE-2015-0138. |