Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Vulnerability in OpenSSL affects IBM XIV Storage System Gen3 and Gen2 (CVE-2015-0204) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. This includes “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. OpenSSL is used by IBM XIV Storage System has addressed the applicable CVEs. CVE(s): CVE-2015-0204 Affected product(s) and affected version(s): IBM XIV Storage System Gen3 versions 11.1.1* and 11.2.0* IBM XIV Storage System Gen2 versions prior to 10.2.4.e-6 Refer to the following reference More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerability_in_openssl_affects_ibm_xiv_storage_system_gen3_and_gen2_cve_2015_0204?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-0204 and CVE-2015-0138. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-04-09 |