IBM Domino 9.0.1 Fix Pack 5 Interim Fix 1 released to fix MD5 SLOTH vulnerability on TLS 1.2

While my brothers and sisters are heading off to Florida for IBM Connect 2016 (tickets still available), some of us have to stay home and keep things running…

It looks like IBM released IBM Domino 9.0.1 Fix Pack 5 Interim Fix 1 to fix an issue with MD5. There’s a vulnerability called ‘SLOTH’ that is on TLS 1.2 that affect Domino. Read more about the vulnerability by going here:

Security Bulletin: Vulnerability in MD5 Signature and Hash Algorithm affects IBM Domino (CVE-2015-7575)

You can get the fix and all of your other fixes by going here:

Interim Fixes and JVM patches for 9.0.1.x versions of IBM Notes, Domino, iNotes and Notes Browser Plug-in

IMPORTANT: Make sure you test this thoroughly to make sure it does not cause any compatibility issues. (The fix disabled MD5 signature has by default.)