Lucene search

K
ibmIBM9805F5A793024F10B10910404E7B76BF5F132612D8ABC635EA6B1862CCBEADC7
HistoryJun 16, 2018 - 10:00 p.m.

Security Bulletin: IBM QRadar Network Security is affected by a vulnerability in coreutils (util-linux)

2018-06-1622:00:18
www.ibm.com
11

EPSS

0

Percentile

5.1%

Summary

A security vulnerability has been discovered in coreutils (util-linux), which is used by IBM QRadar Network Security.

Vulnerability Details

CVEID: CVE-2017-2616**
DESCRIPTION:** util-linux could allow a local authenticated attacker to bypass security restrictions, caused by a race condition when handling the management of child processes. An attacker could exploit this vulnerability to kill other processes with root privileges.
CVSS Base Score: 7.8
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/124680 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

Affected Products and Versions

IBM QRadar Network Security 5.4

Remediation/Fixes

Product

| VRMF| Remediation/First Fix
—|—|—
IBM QRadar Network Security| Firmware version 5.4| Install Firmware 5.4.0.2 from the Available Updates page of the Local Management Interface, or by performing a One Time Scheduled Installation from SiteProtector.
Or
Download Firmware 5.4.0.2 from IBM Security License Key and Download Center and upload and install via the Available Updates page of the Local Management Interface.

Workarounds and Mitigations

None