IBM Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect IBM® SDK for Node.js™
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
OpenSSL vulnerabilities were disclosed on June 11, 2015 by the OpenSSL Project. This includes the Logjam Attack on TLS connections using the Diffie-Hellman (DH) key exchange protocol (CVE-2015-4000). OpenSSL is used by IBM SDK for Node.js. IBM SDK for Node.js has addressed the applicable CVEs. CVE(s): CVE-2015-4000, CVE-2014-8176, CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791 and CVE-2015-1792 Affected product(s) and affected version(s): These vulnerabilities affect IBM
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_vulnerabilities_in_openssl_including_logjam_affect_ibm_sdk_for_node_js?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2015-4000 ,CVE-2014-8176 ,CVE-2015-1788 ,CVE-2015-1789 ,CVE-2015-1790 ,CVE-2015-1791 ,CVE-2015-1792 ,CVE-2014-6593 ,CVE-2015-0383 ,CVE-2015-0410 and CVE-2015-8176. |