Tuesday, April 16, 2019

IBM Connections component pack available with important security fix

If you have installed IBM Connections component pack or you have to plan immediately to update to the brand new component pack just released over IBM Fixcentral.

The issue was noted inside a package included in the component pack , named event-stream that was containing a library exploited by a hacker in the public npm repository to include flatmap-stream.

IBM Connections is not using this library so this should not have any real impact on your system but please consider to upgrade your environment soon as possible to avoid any unwanted behavior on your servers.

No comments:

Post a Comment