01-28-2015 02:46 AM
Raising for awareness in the community.
New Critical GLibc Vulnerability CVE-2015-0235 (aka GHOST)
https://isc.sans.edu/diary/New+Critical+GLibc+Vulnerability+CVE-2015-0235+%28aka+GHOST%29/19237
Raised a support case and current update is Cicso is investigating if AsynOS is vulnerable
Paul
01-28-2015 03:29 AM
On a Cisco Nexus 7000 i get following in the Admin VDC with priv 15 rights:
---snip---
Admin-VDC# >>> import sys
Admin-VDC# >>> print (sys.version)
2.7.2 (default, Oct 25 2012, 22:15:30)
[GCC 4.3.2]
Admin-VDC# >>> import platform
Admin-VDC# >>> platform.libc_ver()
Permission denied. Traceback (most recent call last):
File "<stdin>", line 1, in <module>
File "/isan/python/scripts/platform.py", line 163, in libc_ver
f = open(executable,'rb')
IOError: [Errno 13] Permission denied: '/isan/bin/vsh'
---snap---
On the Catalyst platforms without EEM I don`t believe that there is a glibc.
kind regards,
flo
01-28-2015 04:42 AM
Since AsnycOS is based on FreeBSD which comes with BSD libc it should not be vulnerable. I ran the test code provided by Qualys on a ESA 8.5.6-074 and the libc version was not vulnerable.
01-28-2015 08:45 AM
Currently it is being reviewed and looked into:
http://tools.cisco.com/security/center/viewAlert.x?alertId=37181
Please refer to the following information, as provided from our Product Security Incident Response Team (PSIRT):
Complete information about reporting security vulnerabilities in Cisco products, obtaining assistance with security incidents, and registering to receive security information from Cisco is available on Cisco.com at:
http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html
This web page includes instructions for press inquiries regarding Cisco Security Advisories. All Cisco Security Advisories are available at:
01-29-2015 06:03 AM
Official notice:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghost
Affected and not affected products will be updated and included via this notice. Please see this reference-able link for all related information.
-Robert
01-29-2015 06:44 PM
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghost
As per this notification updated by our PSIRT team.
Your Cisco Security Devices are not vulnerable.
Under Not Vulnerable.
---
Network and Content Security Devices
---
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide