The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of IBM Spectrum Protect

IBM Spectrum Protect Plus: information disclosure via Restored Files Permissions
An attacker can bypass access restrictions to data via Restored Files Permissions of IBM Spectrum Protect Plus, in order to obtain sensitive information...
1105683, CVE-2019-4652, VIGILANCE-VUL-30858
Linux kernel: out-of-bounds memory reading via hclge_tm_schd_mode_vnet_base_cfg
An attacker can force a read at an invalid address via hclge_tm_schd_mode_vnet_base_cfg() of the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2019-AVI-482, CVE-2019-15925, USN-4147-1, VIGILANCE-VUL-30328
Linux kernel: out-of-bounds memory reading via drivers/scsi/qedi/qedi_dbg.c
An attacker can force a read at an invalid address via drivers/scsi/qedi/qedi_dbg.c of the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2019-AVI-419, CERTFR-2019-AVI-441, CERTFR-2019-AVI-455, CERTFR-2019-AVI-482, CERTFR-2019-AVI-502, CERTFR-2019-AVI-503, CERTFR-2019-AVI-530, CVE-2019-15090, openSUSE-SU-2019:2173-1, openSUSE-SU-2019:2181-1, SUSE-SU-2019:2412-1, SUSE-SU-2019:2424-1, SUSE-SU-2019:2648-1, SUSE-SU-2019:2651-1, SUSE-SU-2019:2658-1, SUSE-SU-2019:2738-1, USN-4115-1, USN-4115-2, USN-4118-1, USN-4147-1, VIGILANCE-VUL-30327
Linux kernel: assertion error via sas_ex_discover_expander
An attacker can force an assertion error via sas_ex_discover_expander() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2019-AVI-561, CERTFR-2019-AVI-575, CVE-2019-15807, DLA-1919-1, DLA-1919-2, DLA-1930-1, DSA-2019-189, SUSE-SU-2019:14218-1, SUSE-SU-2019:2949-1, SUSE-SU-2019:2950-1, SUSE-SU-2019:2984-1, VIGILANCE-VUL-30208
Eclipse OpenJ9: privilege escalation via Absolute RPATH
An attacker can bypass restrictions via Absolute RPATH of Eclipse OpenJ9, in order to escalate his privileges...
1072346, 1073908, 1087227, 1101261, 1108107, 1109829, 967217, CVE-2019-11771, ibm10964780, SUSE-SU-2019:14160-1, SUSE-SU-2019:14188-1, SUSE-SU-2019:2291-1, SUSE-SU-2019:2336-1, SUSE-SU-2019:2371-1, VIGILANCE-VUL-30137
IBM Java: privilege escalation via Absolute RPATH
An attacker can bypass restrictions via Absolute RPATH of IBM Java, in order to escalate his privileges...
1072346, 1073908, 1087227, 1101261, 1108107, 1109829, 967217, CVE-2019-4473, ibm10964780, SUSE-SU-2019:14160-1, SUSE-SU-2019:14188-1, SUSE-SU-2019:2291-1, SUSE-SU-2019:2336-1, SUSE-SU-2019:2371-1, VIGILANCE-VUL-30136
RHEL 7: NULL pointer dereference via ovl_posix_acl_create
An attacker can force a NULL pointer to be dereferenced via ovl_posix_acl_create() of RHEL 7, in order to trigger a denial of service...
CVE-2019-10140, RHBUG-1677778, VIGILANCE-VUL-30075
IBM Spectrum Protect for Enterprise Resource Planning: information disclosure via Password Trace File
An attacker can bypass access restrictions to data via Password Trace File of IBM Spectrum Protect for Enterprise Resource Planning, in order to obtain sensitive information...
CVE-2018-1987, ibm10883782, VIGILANCE-VUL-29944
Linux kernel: denial of service via setup_format_params
An attacker can trigger a fatal error via setup_format_params() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2019-AVI-376, CERTFR-2019-AVI-381, CERTFR-2019-AVI-392, CERTFR-2019-AVI-417, CERTFR-2019-AVI-418, CERTFR-2019-AVI-419, CERTFR-2019-AVI-441, CERTFR-2019-AVI-458, CVE-2019-14284, DLA-1884-1, DLA-1885-1, DSA-4495-1, DSA-4497-1, openSUSE-SU-2019:1923-1, openSUSE-SU-2019:1924-1, SSA:2019-226-01, SUSE-SU-2019:14157-1, SUSE-SU-2019:2068-1, SUSE-SU-2019:2069-1, SUSE-SU-2019:2070-1, SUSE-SU-2019:2071-1, SUSE-SU-2019:2072-1, SUSE-SU-2019:2073-1, SUSE-SU-2019:2262-1, SUSE-SU-2019:2263-1, SUSE-SU-2019:2299-1, SUSE-SU-2019:2430-1, SUSE-SU-2019:2450-1, USN-4114-1, USN-4115-1, USN-4115-2, USN-4116-1, USN-4117-1, USN-4118-1, VIGILANCE-VUL-29904
Linux kernel: out-of-bounds memory reading via set_geometry
An attacker can force a read at an invalid address via set_geometry() of the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2019-AVI-376, CERTFR-2019-AVI-381, CERTFR-2019-AVI-392, CERTFR-2019-AVI-417, CERTFR-2019-AVI-418, CERTFR-2019-AVI-419, CERTFR-2019-AVI-441, CERTFR-2019-AVI-458, CVE-2019-14283, DLA-1884-1, DLA-1885-1, DSA-4495-1, DSA-4497-1, openSUSE-SU-2019:1923-1, openSUSE-SU-2019:1924-1, SSA:2019-226-01, SUSE-SU-2019:14157-1, SUSE-SU-2019:2068-1, SUSE-SU-2019:2069-1, SUSE-SU-2019:2070-1, SUSE-SU-2019:2071-1, SUSE-SU-2019:2072-1, SUSE-SU-2019:2073-1, SUSE-SU-2019:2262-1, SUSE-SU-2019:2263-1, SUSE-SU-2019:2299-1, SUSE-SU-2019:2430-1, SUSE-SU-2019:2450-1, USN-4114-1, USN-4115-1, USN-4115-2, USN-4116-1, USN-4117-1, USN-4118-1, VIGILANCE-VUL-29903
Our database contains other pages. You can request a free trial to read them.

Display information about IBM Spectrum Protect: