Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin for IBM Integration Bus and WebSphere Message Broker: Multiple security vulnerabilities in IBM JREs 6 & 7 |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
Multiple security vulnerabilities exist in the IBM Java™ Runtime Environment component of WebSphere Message Broker for IBM JRE 6 SR16 (and earlier) and the IBM Java Runtime Environment component of IBM Integration Bus for JRE 7 SR7 (and earlier). This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption (POODLE) SSLv3 vulnerability (CVE-2014-3566). These were disclosed as part of the IBM Java SDK updates in October 2014 CVE(s): CVE-2014-3566, CVE-2014-6457, More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_for_ibm_integration_bus_and_websphere_message_broker_multiple_security_vulnerabilities_in_ibm_jres_6_71?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-6457 ,CVE-2014-3566 ,CVE-2014-4244 ,CVE-2014-4263 ,CVE-2014-6468 ,CVE-2014-6558 ,CVE-2014-3065 ,CVE-2014-6511 ,CVE-2014-6512 ,CVE-2014-6513 ,CVE-2014-6562 ,CVE-2014-6546 ,CVE-2014-6503 ,CVE-2014-6532 ,CVE-2014-4288 ,CVE-2014-6493 ,CVE-2014-6492 ,CVE-2014-6458 ,CVE-2014-6466 ,CVE-2014-6506 ,CVE-2014-6476 ,CVE-2014-6515 ,CVE-2014-6519 ,CVE-2014-6517 ,CVE-2014-6504 ,CVE-2014-6531 ,CVE-2014-6527 and CVE-2014-6502. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-12-19 |