Vibe vulnerability with GNU Bash Remote Code Execution (aka ShellShock) and Mozilla NSS vulnerabilities

Any installation of Novell Vibe running on OES or SLES is affected by the GNU Bash Remote Code Execution vulnerability (also known as ShellShock or Bash Bug) and the Mozilla Network Security Services (NSS) vulnerability as detailed in the following Common Vulnerabilities and Exposures (CVE) identifiers:

Further information regarding these security issues can be found here:

• https://support.novell.com/security/cve/CVE-2014-6271.html
• https://support.novell.com/security/cve/CVE-2014-6277.html
• https://support.novell.com/security/cve/CVE-2014-6278.html
• https://support.novell.com/security/cve/CVE-2014-7169.html
• https://support.novell.com/security/cve/CVE-2014-7186.html
• https://support.novell.com/security/cve/CVE-2014-7187.html

Mozilla NSS:

• https://support.novell.com/security/cve/CVE-2014-1568.html

Updates are available directly via the SLES / OES update channels; please apply updates and patches available through the respective support channel.

Vibe installation running on Windows are not affected.
Consult TID 7015701 for OES.