Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
632
Views
0
Helpful
2
Replies

cisco asa 5510 Patch OpenSSL to 0.9.8j or later

nfordhk
Level 1
Level 1

‎06-10-2014 08:04 AM - edited ‎03-11-2019 09:18 PM

Our PCI scan found the following bug "Patch OpenSSL to 0.9.8j or later"

We have an ASA 5510 running 8.2(2) with the following ssl: ssl encryption rc4-sha1 aes128-sha1 aes256-sha1

Reviewing the 8.2x OpenSSL notes in the releases documentation it specifices it is using 0.9.8 but not which version.

Can someone recommend which version to upgrade to?

Labels:
0 Helpful
2 Replies 2

James Leinweber
Level 4
Level 4

‎06-10-2014 09:25 AM

Cisco is still evaluating this and hasn't released fixed code yet:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl

-- Jim Leinweber, WI State Lab of Hygiene

 

0 Helpful

nfordhk
Level 1
Level 1
In response to James Leinweber

‎06-10-2014 10:09 AM

Our vulnerability states "Netscape/OpenSSL Cipher Forcing Bug" I don't see that listed.
 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card