Question & Answer
Question
What APARs and security vulnerabilities were resolved in interim fix (patch) levels for IBM Spectrum Protect™ Operations Center V7.1.13?
Answer
This document lists APARs and security vulnerabilities addressed in interim fix levels for IBM Spectrum Protect Operations Center V7.1.13 users.
Tip: Beginning with Version 7.1.3, IBM® Tivoli® Storage Manager is now IBM Spectrum Protect™. Some applications such as the software fulfillment systems and IBM License Metric Tool use the new product name. However, the software and its product documentation continue to use the Tivoli Storage Manager product name. To learn more about the rebranding transition, see technote 534193.
Find the latest IBM Spectrum Protect downloads by going to Fixes by Version.
For a list of APARs that are fixed in the Operations Center V7.1.0, see technote 1653263.
For a list of APARs that are fixed in Operations Center V7.1 fix pack levels, see technote 1680270.
Operations Center interim fix packs 7.1.13.200 and 7.1.13.100 did not include APAR updates.
Security vulnerabilities fixed in level 7.1.13.100
|
Security vulnerability
|
Abstract
|
| CVE-2020-14782 | An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact, and no availability impact. |
| CVE-2020-27221 | Eclipse OpenJ9 is vulnerable to a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encoding. |
| CVE-2020-4955 | IBM Spectrum Protect Operations Center could allow a remote attacker to execute arbitrary code on the system. |
| CVE-2020-4954 | IBM Spectrum Protect Operations Center could allow a remote attacker to bypass authentication restrictions. |
| CVE-2020-4956 | IBM Spectrum Protect Operations Center is vulnerable to a denial of service attack. |
Was this topic helpful?
Document Information
Modified date:
08 June 2021
UID
ibm16410578