Problem Note 63978: The SAS® Environment Manager 2.5 server includes multiple, vulnerable third-party libraries
 |  |  |  |  |
Severity: High
Description: The SAS Environment Manager 2.5 server includes versions of third-party libraries that have known vulnerabilities. Details about these vulnerabilities are available in the following CVE documents:
Potential Impact: The impact varies. See the CVE details in the links that are listed above.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
| Product Family | Product | System | Product Release | SAS Release | ||
| Reported | Fixed* | Reported | Fixed* | |||
| SAS System | SAS Environment Manager | Microsoft® Windows® for x64 | 2.5_M3 | 9.4 TS1M6 | ||
| 64-bit Enabled AIX | 2.5_M3 | 9.4 TS1M6 | ||||
| 64-bit Enabled Solaris | 2.5_M3 | 9.4 TS1M6 | ||||
| HP-UX IPF | 2.5_M3 | 9.4 TS1M6 | ||||
| Linux for x64 | 2.5_M3 | 9.4 TS1M6 | ||||
| Solaris for x64 | 2.5_M3 | 9.4 TS1M6 | ||||
A fix for this issue for SAS Environment Manager 2.5_M3 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/E8M.html#63978| Type: | Problem Note |
| Priority: | high |
| Date Modified: | 2019-04-18 11:55:01 |
| Date Created: | 2019-04-04 15:53:10 |