Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
402
Views
0
Helpful
3
Replies

Ghost Vulnerability patching confusion

Go to solution
Tim Hamblin
Level 1
Level 1

‎03-20-2015 08:08 AM - edited ‎03-10-2019 10:34 PM

Hi all,

 

We are currently running ACS v5.4 and were looking to go to patch 7 initially to combat shellshock.

 

Then GHOST came along so we waited for Cisco's advisory on the best version to go to.

 

This has now come out and the advisory is less than helpful!!! - https://tools.cisco.com/bugsearch/bug/CSCus68826

 

On one habd it seems to say 5.4 is good and on the other that all versions are vulnerable!

 

Can anybody clarify what patch/version we need to negate the vulnerability please :)

 

Document is too confusing!!!

 

Tim

 

 

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎03-22-2015 08:01 AM

Hi Tim,

I have double checked and all 5.x versions are affected. The fixes are not available for 5.4 or 5.3 but 5.5 and 5.6. Kindly upgrade to get the fixes.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

View solution in original post

0 Helpful

Go to solution
mohanak
Cisco Employee
Cisco Employee

‎03-23-2015 04:17 AM

Install the latest patches 5.5 Patch 8 and 5.6 patch 3.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎03-22-2015 08:01 AM

Hi Tim,

I have double checked and all 5.x versions are affected. The fixes are not available for 5.4 or 5.3 but 5.5 and 5.6. Kindly upgrade to get the fixes.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

0 Helpful

Go to solution
mohanak
Cisco Employee
Cisco Employee

‎03-23-2015 04:17 AM

Install the latest patches 5.5 Patch 8 and 5.6 patch 3.

0 Helpful

Go to solution
Tim Hamblin
Level 1
Level 1

‎03-25-2015 03:08 AM

Thanks all, will look to upgrade :)

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents