Security Bulletin: Multiple security vulnerabilities affect Liberty for Java for IBM Cloud
  • Liberty for Java
  • Sydney
    Frankfurt
    London
    Washington DC
    Dallas
  • Description
    There are multiple vulnerabilities in the IBM SDK Java Technology Edition, which is shipped with Liberty for Java for IBM Cloud. These issues were disclosed as part of the IBM Java SDK updates in October 2018. They might affect some configurations of IBM WebSphere Application Server Liberty. There is a potential remote code execution vulnerability in WebSphere Application Server (CVE-2018-1904).

    A user action is needed to update Liberty for Java on IBM Cloud.

    For more information, see the security bulletin.