IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus and WebSphere Message Broker
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
Multiple security vulnerabilities exist in IBM® Runtime Environment Java™ Technology Editions 6 SR16, 7 SR9 and 7 SR1 (and earlier) shipped with WebSphere Message Broker and IBM Integration Bus. The vulnerabilities were disclosed as part of the IBM Java SDK updates in April 2015. This bulletin also addresses the FREAK ("Factoring Attack on RSA-EXPORT keys") SSL/TLS and RC4 Bar Mitzvah Attack for SSL/TLS vulnerabilities. CVE(s): CVE-2015-0491, CVE-2015-0459,
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_java_runtime_affect_ibm_integration_bus_and_websphere_message_broker1?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2015-0250 ,CVE-2015-1920 ,CVE-2015-0491 ,CVE-2015-0459 ,CVE-2015-0469 ,CVE-2015-0488 ,CVE-2015-0478 ,CVE-2015-2808 ,CVE-2015-1916 and CVE-2015-0204. |