Release date: 2012-04-16
Updated on: 2012-04-17
Affected Systems:
IBM 31-bit SDK for z/OS 6.x
IBM 64-bit SDK for z/OS 6.x
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2011-3563, CVE-2011-5035, CVE-2012-0497, CVE-2012-0498, CVE-2012-0499, CVE-2012-0500, CVE-2012-501, CVE-2012-0502, CVE-2012-0503, CVE-2012-0505
The ibm sdk for z/OS license provides industry-standard APIs. Z/OSSDK products are mutually independent and can be separately ordered and used.
The IBM 31-bit SDK for z/OS and the IBM 64-bit SDK for z/OS have multiple implementation vulnerabilities, attackers can exploit this vulnerability to disclose sensitive information, operate certain data, cause denial of service, and Control Vulnerability Systems.
<* Source: IBM (ncsupp@ca.ibm.com)
Link: http://secunia.com/advisories/48854/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
IBM
---
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.ers.ibm.com/