When was CVE-2016-0363 published?

CVE-2016-0363 was published in May 2016 as part of IBM's ongoing efforts to secure their software products.

Vulnerability/
CVE-2016-0363

high

8.1

CWE

4/4/2016

3/6/2016

5/8/2024

CVE-2016-0363: Input Validation

First published: Mon Apr 04 2016(Updated: )

It was reported that the IBM fix for the issue 67 from this document <a href="http://www.security-explorations.com/materials/SE-2012-01-IBM-2.pdf">http://www.security-explorations.com/materials/SE-2012-01-IBM-2.pdf</a> didn't address the problem properly. References: <a href="http://seclists.org/fulldisclosure/2016/Apr/3">http://seclists.org/fulldisclosure/2016/Apr/3</a> Full report: <a href="http://www.security-explorations.com/materials/SE-2012-01-IBM-4.pdf">http://www.security-explorations.com/materials/SE-2012-01-IBM-4.pdf</a>

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
redhat/java	<1.7.0-ibm-1:1.7.0.9.40-1jpp.1.el5	1.7.0-ibm-1:1.7.0.9.40-1jpp.1.el5
redhat/java	<1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el5	1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el5
redhat/java	<1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el6_7	1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el6_7
redhat/java	<1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el6_7	1.6.0-ibm-1:1.6.0.16.25-1jpp.1.el6_7
redhat/java	<1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el6	1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el6
redhat/java	<1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el7	1.7.1-ibm-1:1.7.1.3.40-1jpp.1.el7
redhat/java	<1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el7	1.8.0-ibm-1:1.8.0.3.0-1jpp.1.el7
redhat/spacewalk-java	<0:2.0.2-109.el6	0:2.0.2-109.el6
redhat/java	<1.7.1-ibm-1:1.7.1.4.1-1jpp.1.el6_8	1.7.1-ibm-1:1.7.1.4.1-1jpp.1.el6_8
redhat/spacewalk-java	<0:2.3.8-146.el6	0:2.3.8-146.el6
redhat satellite	=5.6
redhat satellite	=5.7
redhat enterprise Linux desktop	=6.0
redhat enterprise Linux desktop	=7.0
Red Hat Enterprise Linux HPC Node Supplementary	=6.0
Red Hat Enterprise Linux HPC Node Supplementary	=7.0
redhat enterprise Linux server	=6.0
redhat enterprise Linux server	=7.0
redhat enterprise Linux server eus	=6.7
redhat enterprise Linux server eus	=7.2
redhat enterprise Linux server eus	=7.3
redhat enterprise Linux server eus	=7.4
redhat enterprise Linux server eus	=7.5
redhat enterprise Linux workstation	=6.0
redhat enterprise Linux workstation	=7.0
SUSE Linux Enterprise Software Development Kit	=11.0-sp4
SUSE Linux Enterprise Software Development Kit	=12.0
SUSE Linux Enterprise Software Development Kit	=12.0-sp1
SUSE Linux Enterprise Module for Legacy	=12
SUSE Linux Enterprise Server	=11.0-sp2
SUSE Linux Enterprise Server	=11.0-sp3
SUSE Linux Enterprise Server	=11.0-sp4
SUSE Linux Enterprise Server	=12.0
SUSE Linux Enterprise Server	=12.0-sp1
SUSE Manager	=2.1
SUSE Manager	=2.1
openSUSE OpenStack Cloud	=5
IBM SDK	>=6.0.0.0<6.0.16.25
IBM SDK	>=6.1.0.0<6.1.8.25
IBM SDK	>=7.0.0.0<7.0.9.40
IBM SDK	>=7.1.0.0<7.1.3.40
IBM SDK	>=8.0.0.0<8.0.3.0

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

When was CVE-2016-0363 published?
CVE-2016-0363 was published in May 2016 as part of IBM's ongoing efforts to secure their software products.

collector/redhat-cve
agent/type
agent/author
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2016-0363
agent/references
agent/weakness
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-api
agent/software-canonical-lookup-request
collector/nvd-index
package-manager/redhat
vendor/redhat
canonical/redhat satellite
version/redhat satellite/5.6
version/redhat satellite/5.7
canonical/redhat enterprise linux desktop
version/redhat enterprise linux desktop/6.0
version/redhat enterprise linux desktop/7.0
canonical/red hat enterprise linux hpc node supplementary
version/red hat enterprise linux hpc node supplementary/6.0
version/red hat enterprise linux hpc node supplementary/7.0
canonical/redhat enterprise linux server
version/redhat enterprise linux server/6.0
version/redhat enterprise linux server/7.0
canonical/redhat enterprise linux server eus
version/redhat enterprise linux server eus/6.7
version/redhat enterprise linux server eus/7.2
version/redhat enterprise linux server eus/7.3
version/redhat enterprise linux server eus/7.4
version/redhat enterprise linux server eus/7.5
canonical/redhat enterprise linux workstation
version/redhat enterprise linux workstation/6.0
version/redhat enterprise linux workstation/7.0
vendor/novell
canonical/suse linux enterprise software development kit
version/suse linux enterprise software development kit/11.0-sp4
version/suse linux enterprise software development kit/12.0
version/suse linux enterprise software development kit/12.0-sp1
canonical/suse linux enterprise module for legacy
version/suse linux enterprise module for legacy/12
canonical/suse linux enterprise server
version/suse linux enterprise server/11.0-sp2
version/suse linux enterprise server/11.0-sp3
version/suse linux enterprise server/11.0-sp4
version/suse linux enterprise server/12.0
version/suse linux enterprise server/12.0-sp1
canonical/suse manager
version/suse manager/2.1
canonical/opensuse openstack cloud
version/opensuse openstack cloud/5
vendor/ibm
canonical/ibm sdk
version/ibm sdk/6.0.0.0
version/ibm sdk/6.1.0.0
version/ibm sdk/7.0.0.0
version/ibm sdk/7.1.0.0
version/ibm sdk/8.0.0.0

CVE-2016-0363: Input Validation

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Frequently Asked Questions

When was CVE-2016-0363 published?

Company

Resources

Contact