CVE-2014-4813

Name of the Vulnerable Software and Affected Versions IBM Tivoli Storage Manager versions 5.4.0.0 through 5.4.3.6 IBM Tivoli Storage Manager versions 5.5.0.0 through 5.5.4.3 IBM Tivoli Storage Manager versions 6.1.0.0 through 6.1.5.6 IBM Tivoli Storage Manager versions 6.2 before 6.2.5.4 IBM Tivoli Storage Manager versions 6.3 before 6.3.2.3 IBM Tivoli Storage Manager versions 6.4 before 6.4.2.1 IBM Tivoli Storage Manager versions 7.1 before 7.1.1

Description A race condition in the client component of IBM Tivoli Storage Manager allows local users to obtain root privileges via unspecified vectors. This issue affects installations on UNIX and Linux systems.

Recommendations For versions 5.4.0.0 through 5.4.3.6, update to a version after 5.4.3.6. For versions 5.5.0.0 through 5.5.4.3, update to a version after 5.5.4.3. For versions 6.1.0.0 through 6.1.5.6, update to a version after 6.1.5.6. For versions 6.2 before 6.2.5.4, update to version 6.2.5.4 or later. For versions 6.3 before 6.3.2.3, update to version 6.3.2.3 or later. For versions 6.4 before 6.4.2.1, update to version 6.4.2.1 or later. For versions 7.1 before 7.1.1, update to version 7.1.1 or later.