Boletines de Vulnerabilidades

IBM Security Bulletin: Security Bulletin: IBM Sterling Connect:Direct for UNIX is affected by the following OpenSSL vulnerabilities: CVE-2014-0224

Información sobre el sistema
   
Software afectado IBM

Descripción
Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project. CVE(s): CVE-2014-0224 Affected product(s) and affected version(s): IBM Sterling Connect:Direct for UNIX 4.0.00 · All versions prior to 4.0.00 iFix 112 IBM Sterling Connect:Direct for UNIX 4.1.0 · All versions prior to 4.1.0.4 iFix 27 Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_security_bulletin_ibm_sterling_connect_direct_for_unix_is_affected_by_the_following_openssl_vulnerabilities_cve_2014_0224?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2014-0224 ,CVE-2014-0907 ,CVE-2014-0453 ,CVE-2013-4286 and CVE-2013-4322.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-07-05

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT