Boletines de Vulnerabilidades

IBM Security Bulletin: Multiple security vulnerabilities in IBM Java affect InfoSphere Optim Data Growth Solution for z/OS with Classic Federation (CVE-2013-2407, CVE-2013-2412, CVE-2013-4002)

Información sobre el sistema
   
Software afectado IBM

Descripción
Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with IBM InfoSphere Optim Data Growth Solution for z/OS with Classic Federation. CVE(s): CVE-2013-2407, CVE-2013-2412 and CVE-2013-4002 Affected product(s) and affected version(s): Versions 9.1, 8.1, and 7.3 IBM InfoSphere Optim Data Growth Solution for z/OS with Classic Federation are affected. Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_security_vulnerabilities_in_ibm_java_affect_infosphere_optim_data_growth_solution_for_z_os_with_classic_federation_cve_2013_2407_cve_2013_2412_cve_2013_4002?lang=en_

Identificadores estándar
Propiedad Valor
CVE CVE-2013-2407 ,CVE-2013-2412 ,CVE-2013-4002 ,CVE-2013-0169 ,CVE-2013-6329 ,CVE-2013-5791 and CVE-2013-5763.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-02-09

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT