× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. March 2015

RE: Security Bulletin: Vulnerability in SSLv3 Affects Power Hardware Management Console (CVE-2014-3513, CVE-2014-3566, CVE-2014-3567, CVE-2014-3568)

Roberto,

Yes, just received today, dated 05 March 2015.
The document it refers to N1020593 was modified 2015--03-04

I'm on 7.7.7.0 SP3 MH1409 MH1422.

I'm a bit behind, have some work to do.

Paul

-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Roberto José Etcheverry Romero
Sent: Thursday, March 05, 2015 2:03 PM
To: Midrange Systems Technical Discussion
Subject: Re: Security Bulletin: Vulnerability in SSLv3 Affects Power Hardware Management Console (CVE-2014-3513, CVE-2014-3566, CVE-2014-3567, CVE-2014-3568)

IIRC Poodle is fixed by MH1490 which also fixes the glibc and older ssl/ssh vulnerabilities... (for v7.7.9.0.1 at least) and that one has been available for at least a month. is that bulleting a new one?

Best Regards,
Roberto

On Thu, Mar 5, 2015 at 3:44 PM, Steinmetz, Paul <PSteinmetz@xxxxxxxxxx>
wrote:

Security Bulletin: Vulnerability in SSLv3 Affects Power Hardware
Management Console (CVE-2014-3513, CVE-2014-3566, CVE-2014-3567,
CVE-2014-3568)

Security Bulletin

Summary

OpenSSL included in Power Hardware Management Console contains
multiple vulnerabilities including POODLE (Padding Oracle On
Downgraded Legacy Encryption).

HMC Security Bulletin URL:
http://www-01.ibm.com/support/docview.wss?uid=nas8N1020593


Thank You
_____
Paul Steinmetz
IBM i Systems Administrator

Pencor Services, Inc.
462 Delaware Ave
Palmerton Pa 18071

610-826-9117 work
610-826-9188 fax
610-349-0913 cell
610-377-6012 home

psteinmetz@xxxxxxxxxx
http://www.pencor.com/

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe,
unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take
a moment to review the archives at
http://archive.midrange.com/midrange-l.


--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at http://archive.midrange.com/midrange-l.


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.