打印

请升级IBM HTTP Server GSKit模块安全漏洞之最新补丁

请升级IBM HTTP Server GSKit模块安全漏洞之最新补丁

Security Bulletin: Vulnerabilities in the GSKit component of IBM HTTP Server (CVE-2016-0201 and CVE-2015-7420)

Two vulnerabilities have been addressed in the GSKit component of IBM HTTP Server.
1. IBM GSKit could allow a remote attacker to obtain sensitive information, caused by a MD5 collision. An attacker could exploit this vulnerability to obtain authentication credentials.

2. A vulnerability in GSKit could allow a remote attacker to obtain sensitive information. The GSKit PRNG state is duplicated during a fork() system call operation which results in a period of time where child processes may generate identical PRNG output to the parent.

补丁下载:
V8.5.0.X - 8.5.5.8 : http://www-933.ibm.com/eserver/s ... erver&brandid=5
http://www-01.ibm.com/support/docview.wss?uid=swg24041672

V8.0.0.0 - 8.0.0.12 : http://www-933.ibm.com/eserver/s ... erver&brandid=5

详情 : http://www-01.ibm.com/support/docview.wss?uid=swg21974507
简单就是美!
我的Java:http://www.Java2Class.net

TOP