[ADSM-L] Privilege escalation bug
2015-02-25 10:57:43
I received a security bulletin from IBM yesterday regarding "Tivoli Storage
Manager Stack-based Buffer Overflow Elevation of Privilege: CVE-2014-6184". The
affected version/release combinations listed in the bulletin run from 5.4 to
6.3. We still have one Linux system with 5.3 client code. Can I treat the list
of affected releases as an explicit assurance that the 5.3 client does not have
the vulnerability discussed in the bulletin? The alternative possibility that
worries me is that 5.4 is the oldest level IBM thought it worthwhile to check.
Thomas Denier
Thomas Jefferson University
The information contained in this transmission contains privileged and
confidential information. It is intended only for the use of the person named
above. If you are not the intended recipient, you are hereby notified that any
review, dissemination, distribution or duplication of this communication is
strictly prohibited. If you are not the intended recipient, please contact the
sender by reply email and destroy all copies of the original message.
CAUTION: Intended recipients should NOT use email communication for emergent or
urgent health care matters.
|
<Prev in Thread] |
Current Thread |
[Next in Thread>
|
- [ADSM-L] Privilege escalation bug,
Thomas Denier <=
|
|
|