Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Vulnerabilities in OpenSSL and IBM Java SDK affect IBM StoredIQ 7.6 (CVE-2015-0204, CVE-2015-0286, CVE-2015-0138) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
OpenSSL vulnerabilities were disclosed on January 8, 2015 and March 19, 2015 by the OpenSSL Project. This includes “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. OpenSSL is used by IBM StoredIQ. IBM StoredIQ has addressed the applicable CVEs. The “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability affects IBM® SDK Java™ Technology Edition, Version 7 that is used by IBM StoredIQ. CVE(s): More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerabilities_in_openssl_and_ibm_java_sdk_affect_ibm_storediq_7_6_cve_2015_0204_cve_2015_0286_cve_2015_0138?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-0204 ,CVE-2015-0286 and CVE-2015-0138. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-04-10 |