Boletines de Vulnerabilidades

Security Bulletin: Multiple potential vulnerabilities in OpenSSL fixed in Chassis Management Module (CMM) (CVE-2014-3509, CVE-2014-3506, CVE-2014-3507, CVE-2014-3511, CVE-2014-3505, CVE-2014-3510, CVE

Información sobre el sistema
   
Software afectado IBM

Descripción
OpenSSL disclosed several vulnerabilities in August 2014. Seven of those vulnerabilities apply to the version of OpenSSL used by Flex Systems Chassis Management Module (CMM). CVE(s): CVE-2014-3509, CVE-2014-3506, CVE-2014-3507, CVE-2014-3511, CVE-2014-3505, CVE-2014-3510 and CVE-2014-3508 Affected product(s) and affected version(s): Flex System Chassis Management Module, Option part number 68Y7029 Flex System Enterprise Chassis, Types 7893, 8721, 8724 Affected Firmware Versions v2.0.0K

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_multiple_potential_vulnerabilities_in_openssl_fixed_in_chassis_management_module_cmm_cve_2014_3509_cve_2014_3506_cve_2014_3507_cve_2014_3511_cve_2014_3505_cve_2014_3510_cve_2014_

Identificadores estándar
Propiedad Valor
CVE

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-12-27

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT