Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1093
Views
15
Helpful
3
Replies

Is Smart Net Total Care affected by Heartbleed?

Go to solution
saarbaug
Cisco Employee
Cisco Employee

‎05-23-2014 02:11 PM

Hi everyone,

Is Smart Net Total Care affected by Heartbleed?

 

Thanks.

Regards, Sandra Kindly remember to mark questions as answered and please rate posts and answers if you find them helpful.
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Kevin Ohlson
Level 3
Level 3

‎05-23-2014 02:13 PM

The Cisco security team has confirmed that  Smart Net Total Care is ‘Not Vulnerable’ in the Cisco Heartbleed Advisory. The CSPC Collector 2.3 has been confirmed to contain vulnerable, though unused, OpenSSL libraries and is therefore classified as ‘Vulnerable’ in the Heartbleed Advisory. A patch to remove these unused libraries is available. Please refer to the Advisory for additional information and next steps, if applicable.  

View solution in original post

3 Replies 3

Go to solution
Kevin Ohlson
Level 3
Level 3

‎05-23-2014 02:13 PM

The Cisco security team has confirmed that  Smart Net Total Care is ‘Not Vulnerable’ in the Cisco Heartbleed Advisory. The CSPC Collector 2.3 has been confirmed to contain vulnerable, though unused, OpenSSL libraries and is therefore classified as ‘Vulnerable’ in the Heartbleed Advisory. A patch to remove these unused libraries is available. Please refer to the Advisory for additional information and next steps, if applicable.  

Go to solution
John Choi
Level 1
Level 1
In response to Kevin Ohlson

‎07-16-2014 10:35 PM

Hello Kevin,

Could you help provide any URL's that can point the customers or EPMs (such as myself) can download the patch, and maybe even provide details on the process?

Thank you,

John

Go to solution
Kevin Ohlson
Level 3
Level 3
In response to John Choi

‎07-23-2014 01:52 PM

Hi John,

For PSIRT vulnerabilities, it’s best to follow the process outlined on the Security Advisory page. The link for this vulnerability, [CSCuo29151], contains a description and links to relevant information, including a link to the known fixed release. 

Thanks,

 - Kevin

Customers Also Viewed These Support Documents