Security Bulletin: IBM Tivoli Federated Identity Manager Business Gateway can be affected by a vulnerability in IBM Java Runtime Environment (CVE-2012-5081)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  psirtmedium psirttivoli
0 Comments | 737 Visits
The implementation of TLS in the IBM Java JDK may not check the TLS vector length as set out in the Internet Engineering Task Force Request For Comments (RFC) 5246. The fix enhances the checking for the vector length. .
Affected product: Tivoli Federated Identity Manager Business Gateway
Affected version(s): 6.1.1, 6.2.0, 6.2.1, 6.2.2
Refer to the following reference URLs for remediation and additional vulnerability details.
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21621887