CVE-2018-1374

Summary

An IBM WebSphere MQ (Maintenance levels 7.1.0.0 - 7.1.0.9, 7.5.0.0 - 7.5.0.8, 8.0.0.0 - 8.0.0.8, 9.0.0.0 - 9.0.0.2, and 9.0.0 - 9.0.4) client connecting to a Queue Manager could cause a SIGSEGV in the Channel process amqrmppa. IBM X-Force ID: 137775.

Affected Software

VendorProductVersion RangeStatus
IBMWebSphere MQ7.1affected
IBMWebSphere MQ7.5affected
IBMWebSphere MQ7.5.0.1affected
IBMWebSphere MQ7.1.0.1affected
IBMWebSphere MQ7.1.0.2affected
IBMWebSphere MQ7.5.0.2affected
IBMWebSphere MQ7.1.0.3affected
IBMWebSphere MQ7.1.0.4affected
IBMWebSphere MQ7.5.0.3affected
IBMWebSphere MQ8.0.0.0affected
IBMWebSphere MQ8.0.0.1affected
IBMWebSphere MQ7.5.0.4affected
IBMWebSphere MQ7.1.0.5affected
IBMWebSphere MQ8.0.0.2affected
IBMWebSphere MQ8.0.0.4affected
IBMWebSphere MQ8.0.0.3affected
IBMWebSphere MQ9.0.0affected
IBMWebSphere MQ8.0.0.6affected
IBMWebSphere MQ9.0.1affected
IBMWebSphere MQ9.0.2affected
IBMWebSphere MQ7.1.0.6affected
IBMWebSphere MQ7.1.0.7affected
IBMWebSphere MQ7.1.0.8affected
IBMWebSphere MQ7.1.0.9affected
IBMWebSphere MQ8.0.0.5affected
IBMWebSphere MQ8.0.0.7affected
IBMWebSphere MQ8.0.0.8affected
IBMWebSphere MQ9.0.0.0affected
IBMWebSphere MQ9.0.0.1affected
IBMWebSphere MQ9.0.0.2affected
IBMWebSphere MQ9.0.3affected
IBMWebSphere MQ9.0.4affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References