Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK and DB2 client affect InfoSphere Streams (CVE-2014-6593, CVE-2015-0138, CVE-2015-0410) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Versions 6 SR16 FP1 and 7R1 SR2 FP1 that are used by InfoSphere Streams. These issues were disclosed as part of the IBM Java SDK updates in January 2015. This bulletin also addresses the “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. The FREAK vulnerability also impacts InfoSphere Streams via the DB2 Client. CVE(s): CVE-2015-0138, CVE-2014-6593 and More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_java_sdk_and_db2_client_affect_infosphere_streams_cve_2014_6593_cve_2015_0138_cve_2015_0410?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-6593 ,CVE-2015-0138 ,CVE-2015-0410 ,CVE-2015-0204 ,CVE-2014-3569 ,CVE-2014-3570 ,CVE-2014-3571 ,CVE-2014-3572 ,CVE-2014-8275 ,CVE-2015-0205 ,CVE-2015-0206 ,CVE-2014-3566 and CVE-2014-0076. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-04-10 |