This help article addresses the following issues for the IDL & ENVI software:ĮNVI-70768: Security vulnerability in FlexNet 11.12.1.2 included with IDL & ENVI software The CVSS base score for this vulnerability is 7.6. Recently, a buffer overflow security vulnerability was identified in Flexera's FlexNet Publisher technology, reported as Common Vulnerabilities and Exposures (CVE ID: CVE-2015-8277) and US CERT Vulnerability Note (VU#485744), on the following web postings: The license management of the IDL & ENVI software products is built with a third party software component called Flexera FlexNet Publisher. For details, please see the following Help article: UPDATE March 22, 2016: A security patch addressing this security vulnerability issue has been made available for download from our web site. We greatly appreciate your business and encourage you to revisit this webpage which will be updated once a security patch has been released which provides a final resolution to this issue. We are committed to making sure our customers can use the IDL & ENVI software in secure fashion so until this patch can be provided there are some steps that can be taken to work around and mitigate the risks posed by this security vulnerability that we want to share at this time. We recognize the severity of this issue and are working diligently on a security patch for both our products and standalone license server installations that we plan to release to our customers as soon as possible. Harris Geospatial Solutions was recently made aware of a security vulnerability in the Flexera FlexNet Publisher technology that is utilized for license management within the IDL & ENVI software products. THIS INFORMATION ONLY PERTAINS TO SOFTWARE VERSIONS IDL 8.5, ENVI 5.3 AND PRIOR
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
March 2023
Categories |