Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1856
Views
10
Helpful
1
Replies

CSCvm09121 - Evaluation of IOS-XE for CVE-2018-5391 (FragmentSmack)

Go to solution
AlexUglev
Level 1
Level 1

‎10-09-2018 06:08 AM

Are IOS XE 3.x software releases affected by this vulnerability or only IOS XE 16.x releases?

Does this vulnerability impact also on firmware releases (ROMMON) or only on IOS XE software releases?

1 person had this problem
Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

‎10-09-2018 06:21 AM

Hi there,

See the parent advisory:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-ip-fragment

 

The vulnerability only covers systems running the Linux kernel 3.9 or later, therefore neither IOS-XE running 3.x.x (running linux kernel 2.6.x) or ROMMON (totally different architecture) are affected.

 

You can confirm the IOS-XE 3.x.x linux version by looking at the “Open Source Documentation” released with each version.

 

Cheers,

Seb.

View solution in original post

1 Reply 1

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

‎10-09-2018 06:21 AM

Hi there,

See the parent advisory:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-ip-fragment

 

The vulnerability only covers systems running the Linux kernel 3.9 or later, therefore neither IOS-XE running 3.x.x (running linux kernel 2.6.x) or ROMMON (totally different architecture) are affected.

 

You can confirm the IOS-XE 3.x.x linux version by looking at the “Open Source Documentation” released with each version.

 

Cheers,

Seb.

Customers Also Viewed These Support Documents