Security Bulletin: Tivoli Endpoint Manager TLS 1.1 and 1.2 AES-NI crash (CVE-2012-2686)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  psirttivoli psirtmedium
0 Comments | 482 Visits
A flaw in the OpenSSL handling of CBC ciphersuites in TLS 1.1 and TLS 1.2 on AES-NI supporting platforms can be exploited in a DoS attack.
Affected product(s) & Affected version(s):
Tivoli Endpoint Manager versions earlier than 8.2.1372.
Refer to the following reference URLs for remediation and additional vulnerability details.