Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1061
Views
8
Helpful
4
Replies

LMS Status regarding Java Vulnerability CVE-2010-4476

g.meerkoetter
Level 1
Level 1

‎03-03-2011 06:50 AM 

Is LMS 3.2 affected by the Oracle Java Floating-Point Value Denial of Service
Vulnerability?


http://blogs.oracle.com/security/2011/02/security_alert_for_cve-2010-44.html


What about Patches?

Labels:
0 Helpful
4 Replies 4

ngoldwat
Level 4
Level 4

‎03-09-2011 01:16 PM

Hi,

The status is currently under review. Once I hear definitive information I'll post it here.

Thanks,

Nick

g.meerkoetter
Level 1
Level 1
In response to ngoldwat

‎03-31-2011 04:11 AM

I just got the confirmation that LMS is vulnerable in my

SR 617002183.

Yes, it took 4 weeks to answer that simple question!

They told me that a patch shall be available on/before 29th Apr.

I did not get a bug ID, yet.

0 Helpful

g.meerkoetter
Level 1
Level 1
In response to ngoldwat

‎05-10-2011 04:17 AM

Thanks for the bug ID and link, though that is not very useful, since all details are still hidden for customers.

Obviously, the patch has not been released yet. My TAC SE told me that it is scheduled for 2011-05-20, now.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents