[c-nsp] Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

Nick Cutting ncutting at edgetg.co.uk
Tue Feb 16 01:08:09 EST 2016


Thank you

Upgraded )

From: Vinny_Abello at Dell.com [mailto:Vinny_Abello at Dell.com]
Sent: 15 February 2016 22:32
To: dwhitejr at cisco.com; Nick Cutting; peter at rathlev.dk; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability


FWIW, I believe the ASA 5505, 5510, 5520, 5540, and 5550's have always been the identical images, with the exception of the 5505's also supporting 9.2.x.

-----Original Message-----
From: cisco-nsp [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of David White, Jr. (dwhitejr)
Sent: Monday, February 15, 2016 3:56 PM
To: Nick Cutting ; Peter Rathlev ; cisco-nsp at puck.nether.net<mailto:cisco-nsp at puck.nether.net>
Subject: Re: [c-nsp] Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability

The non -smp image is also posted (for the 5505). Look on the 5505 download page under:

All Releases
--> Interim
--> 8
--> 8.2.5 Interim

Sincerely,

David.


On 2/15/16 3:43 PM, Nick Cutting wrote:
> This is best news I've heard all day. Was going to have to move 55 VPNs by hand..
>
> I have this for the 5510 - I cannot see a release for the 5505 - will this also be coming?
>
> -----Original Message-----
> From: cisco-nsp [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf
> Of Peter Rathlev
> Sent: 15 February 2016 18:51
> To: cisco-nsp at puck.nether.net<mailto:cisco-nsp at puck.nether.net>
> Subject: Re: [c-nsp] Cisco Security Advisory: Cisco ASA Software IKEv1
> and IKEv2 Buffer Overflow Vulnerability
>
> On Wed, 2016-02-10 at 08:06 -0800, psirt at cisco.com<mailto:psirt at cisco.com> wrote:
>> Cisco Security Advisory: Cisco ASA Software IKEv1 and IKEv2 Buffer
>> Overflow Vulnerability
>>
>> Advisory ID: cisco-sa-20160210-asa-ike
> Poor bastards stuck at 8.2 (like us) might be relieved to know that there actually is a 8.2(5)59 version with the fix. Reading the SA page I got the impression that there was no fixed software for 8.2(5).
>
> Kudos to Cisco for releasing a fixed version of something that old.
> :-)
>
> (And yes, upgrading to 8.4(7)30 and onwards is in the pipeline, we
> just need one small round tuit and we're there.)
>
> --
> Peter
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net<mailto:cisco-nsp at puck.nether.net>
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net<mailto:cisco-nsp at puck.nether.net>
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/

_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net<mailto:cisco-nsp at puck.nether.net> https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/


More information about the cisco-nsp mailing list