DOS Archives - IT Jungle

IBM Patches Nine Security Flaws in IBM i

September 29, 2021 Alex Woodie

IBM patched issued three security bulletins Friday alerting IBM i users to the availability of patches for nine newly disclosed security vulnerabilities in OpenSSL, HTTP Server, and a WebSphere Liberty components. Some of the vulnerabilities are potentially serious and should be patched immediately.

IBM patched two security flaws its OpenSSL API that potentially could have devastating consequences on impacted systems, including enabling a hacker to take over the server, to read sensitive information, and execute a denial of service (DOS) attack. IBM patched these flaws in IBM i 7.1 through 7.4, according to the security bulletin, which you can read …
Read more
Samba Patch Caps Busy Year for IBM i Security

December 4, 2019 Alex Woodie

IBM last week patched a moderately severe security flaw in IBM i’s Samba implementation that could enable hackers to access data they really shouldn’t be able to access. The disclosure caps a rather busy second half of the year for security patches on IBM i that saw 26 emergency PTFs and Yum updates for Node.js, Python, the Apache HTTP Server, OpenSSL, ISC Bind, IBM Navigator, and even Db2 Mirror for IBM i.

On November 26, IBM issued this security bulletin to let people know about the new flaw in the Samba client. The flaw could allow a hacker to not …
Read more
IBM Patches New Security Flaws in Java, OpenSSL

April 3, 2019 Alex Woodie

IBM this week patched a series of flaws in IBM i’s Java environment, including a pair of very serious problems in the OpenJ9 runtime that could allow remote attackers to execute arbitrary code, in addition to a series of less-severe Java vulnerabilities. The company also fixed a new flaw found in IBM i’s OpenSSL implementation.

A total of seven Java flaws that impact IBM i versions 7.1 through 7.3 were addressed with one security bulletin issued by IBM on March 29. IBM issued Group PTFs for each release of the operating system to address them. A single OpenSSL flaw also …
Read more
Enterprises Spend On Systems, Hyperscalers Tap The Brakes

March 11, 2019 Timothy Prickett Morgan

For many enterprises, the current generations of processors that come from IBM, Intel, AMD, and the Arm collective are plenty good enough – and available at reasonable price/performance relative to each other and to their predecessors – that the end of 2018 was a perfectly reasonable time to buy what is on the truck. But hyperscalers and public cloud builders, who live and die by the total cost of ownership of their systems as gauged by raw compute power, space required, and power consumed, have to take a longer view. So with new processors coming from Intel and AMD on …
Read more
One Repository To Rule The Source – And Object – Code

February 4, 2019 Floyd Del Muro

(Sponsored Content) The concept of a single repository for source is not necessarily a new one. When I interviewed with ARCAD back in 2011, I did so at the at the Rational conference called Innovate in Orlando. The research and development team and our chief technology officer were already in dialogue with IBM to resell ARCAD technology alongside its Rational development suite, adding power to Rational Team Concert that development organizations could effectively have a similar repository for IBM i and open source applications.

At the time, RTC supported the open source world very well, just like Git …
Read more
Serious Security Vulns Patched In IBM i

September 19, 2018 Alex Woodie

No good deed goes unpunished. Such as it is with cybersecurity, which demands unceasing attention paid to a never-ending stream of flaws and patches as the cost of remaining off the front page. To that end, IBM patched several more security flaws in IBM i last week, including two serious flaws in Node.js, five critical vulnerabilities in Samba, and one moderate flaw in OpenSSH.

It’s easy to get lulled into a false state of security on the IBM i server, thanks to its unique architecture, cryptic file names, and reputation for strong security. It’s hard enough to find programmers, administrators, …
Read more
Multiple Security Vulnerabilities Reported In IBM i

April 30, 2018 Alex Woodie

IBM this month revealed an array of security vulnerabilities across IBM i middleware components, including OpenSSL, DHCP, and Java products. Most of the flaws were given a “high severity” rating, and all of them have been patched.

This week’s security fun starts with DHCP (Dynamic Host Configuration Protocol), which is used to automate the management and distribution of IP addresses within a network. According to the April 26 IBM security bulletin, IBM i 7.1, 7.2, and 7.3 are vulnerable to a pair of security vulnerabilities in the underlying DHCP protocol.

The first DHCP flaw, which is identified as CVE-2018-5732 …
Read more

Content archive

Recent Posts

Subscribe

Pages

Search

IBM Patches Nine Security Flaws in IBM i

Samba Patch Caps Busy Year for IBM i Security

IBM Patches New Security Flaws in Java, OpenSSL

Enterprises Spend On Systems, Hyperscalers Tap The Brakes

One Repository To Rule The Source – And Object – Code

Serious Security Vulns Patched In IBM i

Multiple Security Vulnerabilities Reported In IBM i

Content archive

Recent Posts

Subscribe

Pages

Search