CVE ID: CVE-2017-1236 Description: An authenticated user could cause a denial of service by issuing an incorrect saved channel status inquiry. CVSS Base Score: 3.1 Affected Products and Versions: - IBM MQ 9.0.2 Continuous Delivery - IBM MQ Appliance 9.0.x Continuous Delivery - IBM MQ 9.0 LTS - IBM MQ 8.0 - IBM MQ 8.0 Appliance Remediation/Fixes: - IBM MQ 9.0.2 Continuous Delivery: Apply IBM MQ 9.0.3 Continuous Delivery release or later. - IBM MQ Appliance 9.0.x Continuous Delivery: Apply continuous delivery update 9.0.3 or later. - IBM MQ 9.0 LTS: Apply Fix Pack 9.0.0.2. - IBM MQ 8.0: Apply Fix Pack 8.0.0.7. - IBM MQ Appliance 8.0: Apply Fix Pack 8.0.0.7. Workarounds and Mitigations: - IBM MQ Appliance: Restart the affected Queue manager. - IBM MQ 9.0.2 CD: Restart the failed command server on the queue manager. - IBM MQ 9.0 LTS: Restart the failed command server on the queue manager. - IBM MQ 8.0: Restart the failed command server on the queue manager.