UPDATED: Security Bulletin: Multiple vulnerabilities in IBM SDK Java Technology Edition affect IBM WebSphere Application Server for Bluemix January 2016 CPU (CVE-2016-0475, CVE-2016-0466, CVE-2015-7575, CVE-2016-0448)
  • WebSphere Application Server
  • Sydney
    United Kingdom
    US South
  • Description
    There are multiple vulnerabilities in IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server for Bluemix. These issues were disclosed as part of the IBM Java SDK updates in January 2016 and includes the vulnerability commonly referred to as "SLOTH". User action might be required.

    For new or existing instances of the service in the EU-GB region, you must apply the update that is listed in the referenced document.

    In the US South and AU-SYD regions, the update is automatically applied for new instances. However, for existing instances, you must apply the update that is listed in the referenced document.

    See the link below for details.