[c-nsp] Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability
Peter Rathlev
peter at rathlev.dk
Mon Feb 15 13:50:36 EST 2016
On Wed, 2016-02-10 at 08:06 -0800, psirt at cisco.com wrote:
> Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer
> Overflow Vulnerability
>
> Advisory ID: cisco-sa-20160210-asa-ike
Poor bastards stuck at 8.2 (like us) might be relieved to know that
there actually is a 8.2(5)59 version with the fix. Reading the SA page
I got the impression that there was no fixed software for 8.2(5).
Kudos to Cisco for releasing a fixed version of something that old. :-)
(And yes, upgrading to 8.4(7)30 and onwards is in the pipeline, we just
need one small round tuit and we're there.)
--
Peter
More information about the cisco-nsp
mailing list