Hi,

I know this is a silly question, I shouldn't be asking in this community (I can't except answer from the learning community :)) but I have been very confused since yesterday reading the Cisco security advisory and bug reports. I hope I'm missing something that I can't remember right now:

I am searching Cisco Switches security issue as an example:

I am searching for Cisco IOS XE 16.3.9 security issues in the Cisco software checker: https://tools.cisco.com/security/center/softwarechecker.x?productSelected=ios_xe&selectedMethod=A&captchaPage=true&platformDesc=Cisco%20&platformCode=NA&versionNamesSelected=16.3.9&allAdvisoriesSelectedByTree=N&advisoryType=0&iosBundleId=cisco-sa-202...

It shows me many security issues such as Cisco IOS and IOS XE Software Autonomic Networking Infrastructure Denial of Service Vulnerability (CVE-2017-6663). This Security issue mentioned in the Cisco bug ID: CSCvd88936 (https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvd88936 )\

Now If I am checking Cisco bug details then it is showing that Known Affected Releases are Denali-16.2.1 and Denali-16.3.1.

Now my question is: If it is affected only the Denali-16.2.1 and Denali-16.3.1 than why this advisory showing me under the IOS version 16.3.9?