Security Bulletin: SSLv3 Vulnerability and multiple vulnerabilities in OpenSSL and IBM Java SDK affect IBM Systems Director Storage Control.
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is used by IBM Systems Director Storage Control. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption (POODLE) SSLv3 vulnerability (CVE-2014-3566). These vulnerabilities were disclosed as part of the IBM Java SDK updates in July 2014 and October 2014. This bulletin also addresses OpenSSL vulnerabilities that were disclosed on October 15, 2014 by the OpenSSL Project. OpenSSL is used
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_sslv3_vulnerability_and_multiple_vulnerabilities_in_openssl_and_ibm_java_sdk_affect_ibm_systems_director_storage_control?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2014-3566 ,CVE-2015-0235 ,CVE-2015-0286 ,CVE-2015-0287 ,CVE-2015-0289 ,CVE-2015-0138 ,CVE-2015-0395 ,CVE-2015-0410 ,CVE-2014-6513 ,CVE-2014-6457 ,CVE-2014-6468 ,CVE-2014-6502 ,CVE-2014-6504 ,CVE-2014-6506 ,CVE-2014-6511 ,CVE-2014-6512 ,CVE-2014-6519 ,CVE-2014-4263 ,CVE-2014-4244 ,CVE-2014-4208 ,CVE-2014-4209 ,CVE-2014-4218 ,CVE-2014-4219 ,CVE-2014-4221 ,CVE-2014-4252 ,CVE-2014-4262 ,CVE-2014-4266 ,CVE-2014-4268 ,CVE-2014-3513 ,CVE-2014-3567 and CVE-2014-3568. |