cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1276
Views
20
Helpful
4
Replies

CSCvj97647 - Cisco FirePower Threat Defense Software SSL or TLS Denial of Service Vulnerability

lewassec1
Level 1
Level 1

what is the difference between affected and fixed releases?

 

Known affected Releases:

> 6.2.3.4, 6.3.0

Known fixed Releases:

> 6.3.0, 6.2.3.4

Do 6.3.0.1 and 6.2.3.5 fix the problem? Does 6.2.3.9? Was 6.3.0 never affected?

1 Accepted Solution

Accepted Solutions

Hi,

 

Reply from TAC we received:

 

"

Mentioned below is the update from development team:

 

“ This bug was found while 6.3.0 was in development, was fixed in 6.3.0 and backported to 6.2.3.4. 

 

>> 6.3.0 and 6.2.3.4 are not vulnerable. “

"

Hope this helps!

 

View solution in original post

4 Replies 4

Dennis Mink
VIP Alumni
VIP Alumni

you best raise this with TAC, cos the bug fix and affected releases are the same, which makes no sense to me.

Please remember to rate useful posts, by clicking on the stars below.

soccerblau1986
Level 1
Level 1

Is there an answer for this?

No, not for us. We don't have a support contract so I didn't ask TAC. I just guess the bug reports are as flawed as the products, version information in Cisco Bugs is rarely useful if the severity of the vulnerability is medium or lower.

Hi,

 

Reply from TAC we received:

 

"

Mentioned below is the update from development team:

 

“ This bug was found while 6.3.0 was in development, was fixed in 6.3.0 and backported to 6.2.3.4. 

 

>> 6.3.0 and 6.2.3.4 are not vulnerable. “

"

Hope this helps!