Security Bulletin: IBM XIV Storage System Gen3 (CVE-2011-4619, CVE-2011-4576, CVE-2011-3210, CVE-2012-4829)
IBM PSIRT 270004PFE3 email@example.com | | Tags:  psirtmedium psirtstorage
0 Comments | 1,022 Visits
Certain network-based attacks can cause the administration interface server to reboot (CVE-2011-4619 and CVE-2011-3210). Control data may be leaked from pad regions of cipher blocks (CVE-2011-4576).
Also Release 11.2 adds the ability for the client to install their own X509v3 certificate (CVE-2012-4829).
Affected product(s) & Affected version(s):
IBM XIV Storage System Gen3 (MTMN 2810 and 2812) running releases 11.0 through 11.1.1
Refer to the following reference URLs for remediation and additional vulnerability details.