CA IDENTITY MANAGER Open JDK vulnerability CVE-2019-2684
search cancel

CA IDENTITY MANAGER Open JDK vulnerability CVE-2019-2684

book

Article ID: 248829

calendar_today

Updated On:

Products

CA Identity Suite CA Identity Manager

Issue/Introduction

 

The vulnerabilities CVE-2019-2602,CVE-2019-2684,CVE-2019-2698 are found in the below  folders

CA\Identity Manager\IAM Suite\Identity Manager\install_config_info\iam-suite-uninstall\resource\
  Installed version : 1.8.0_40

CA\Identity Manager\install_config_info\im-uninstall\resource\
  Installed version : 1.8.0_40

 

 

 

Environment

IM Release : 14.4 GA

 

Cause

Vulnerabilities CVE-2019-2602,CVE-2019-2684,CVE-2019-2698

Resolution

The above AdoptOpenJDK vulnerabilities are addressed in the version greater than 8u272. So by applying the IM 14.4.1 CP that will upgrade to AdoptOpenJDK 1.8.0_292.

 

Powered by Wolken Software