[BESAdmin-Announcements] IBM BigFix Patch released Fixlets for the Stack Clash Vulnerabilites

Announcements for BES Administrators besadmin-announcements at bigmail.bigfix.com
Wed Jun 21 06:16:29 PDT 2017

IBM BigFix Patch has released Fixlets to address the Stack Clash 
Vulnerabilities for CVE 2017-1000364, CVE 2017-1000366, and 

The Fixlets for these CVEs are released in the following sites:
Patches for Oracle Linux 6 site, version 50
Patches for Oracle Linux 7 site, version 82
Patches for RHEL 6 - Native Tools site, version 332
Patches for RHEL RHSM 6 on System Z site, version 38
Patches for RHEL 7 site, version 165
Patches for RHEL RHSM 7 on System Z site, version 26
Patches for RHEL 7 for IBM Power LE site, version 35
Patches for RHEL 7 for IBM Power BE site, version 5
Patches for SLE 11 Native Tools site, version 196
Patches for SLE 11 on System z Native Tools site, version 26
Patches for SLE 12 Native Tools site, version 140

Note: BigFix is unable to publish the Fixlets for some operating systems 
because the vendors have not published the patches for these CVEs yet. 
BigFix will publish the Fixlets for these operating systems as soon as the 
patches become available:
CentOS 6 and CentOS 7: CVE 2017-1000364, CVE 2017-1000366, and 
Oracle Linux 6 and Oracle Linux 7: CVE-2017-1000367
SUSE Linux Enterprise Desktop 11: CVE 2017-1000364 and CVE 2017-1000366
SUSE Linux Enterprise Desktop/Server 11 and SUSE Linux Enterprise Server 
11z: CVE-2017-1000367
Ubuntu 1404 and Ubuntu 1604 : CVE 2017-1000364, CVE 2017-1000366, and 

Actions to Take:
Given the serious nature of these vulnerabilities, it is advisable to 
upgrade your systems immediately or apply the patch as soon as possible.
No other action is required after applying the Fixlets.

Additional Information:
For more information, see the following sources:

Application Engineering team
IBM BigFix Patch

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20170621/861b760f/attachment.html>

More information about the Besadmin-announcements mailing list