We have found our ACS 1121 appliances running 5.4 ACS code are vulnerable to
Our information suggests the appliances are using Openssh 5.3 and these vulnerabilities have been fixed it Openssh 6.2 or newer versions.
What is the timeline for udatding openssh on the ACS 1121 appliance? I have checked the bug database and see no current fixes have been published.
We also use Cisco IPS modules in redundant Cisoc 5525X firewalls. These also appear to be vunerable.
I would like to know firmware roadmap to fix these vulnerabilities.
What remediations or workarounds does Cisco recommend in lieue of a oppenssh upgrade/patch/fix?