Multiple OpenSSL vulnerabilities in Sun SPARC Enterprise M-series XCP Firmware

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2008-5077 Improper Input Validation vulnerability 5.8 OpenSSL in XCP1113 Firmware
Sun SPARC Enterprise M3000 SPARC: 14216085
Sun SPARC Enterprise M4000 SPARC: 14216091
Sun SPARC Enterprise M5000 SPARC: 14216093
Sun SPARC Enterprise M8000 SPARC: 14216096
Sun SPARC Enterprise M9000 SPARC: 14216098
CVE-2008-7270 Cryptographic Issues vulnerability 4.3
CVE-2009-0590 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability 5.0
CVE-2009-3245 Improper Input Validation vulnerability 10.0
CVE-2010-4180 Cipher suite downgrade vulnerability 4.3

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Comments:

Post a Comment:
Comments are closed for this entry.
About

This blog provides security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle Products.
Summarized version of this blog is available as a mapping of CVEs and solutions.

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
2
3
4
5
6
7
8
9
10
11
12
13
14
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today