cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
385
Views
0
Helpful
1
Replies

3.1 hotpatch installation for fixingISE Evaluate OpenSSH CVE-2024-6387

Gouthami Nair
Level 1
Level 1

Please confirm if any issue observed on below hotpatch installation on 3.1 version. Patch we are currently in is 8.

 

Workaround:

-- A hotpatch for 3.1 is now available at https://software.cisco.com/download/home/283801620/type/283802505/release/HP-3.1-CSCwk61938 

1 Reply 1

Saravana17
Level 1
Level 1

Hi,

I already installed it on my Lab node and seems its running with OpenSSH version 9.1 but Openssh remediated version is 9.8 or later. However, Cisco is mentioned explicitly as below,

NOTE: Cisco uses a customized library for SSH, the fix for this vulnerability is implemented in CiscoSSH 1.13.48 (based on OpenSSH 9.1)

https://tools.cisco.com/bugsearch/bug/CSCwk61938

Please refer our other community thread,
https://community.cisco.com/t5/network-access-control/cisco-cve-2024-6387-openssh-server-regresshion/td-p/5142801


Thanks,
Saravana