Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
307
Views
0
Helpful
0
Comments

Question & Answers on OpenSSL Heartbleed Issue and Cisco VDS-TC

Biyou Ma
Community Member

on ‎05-11-2014 05:19 PM

Question:
What version of OpenSSL does VDS-TC 5.0 and 5.1 run, is it affected by the heartbleed vulnerability bug?

 

Answer:
VDS-TC 5.0 and 5.1 releases is running with OpenSSL 0.9.8 branch which according to http://heartbleed.com/ is not vulnerable.

Below please find some more details about the OpenSLL versions:
OpenSSL 1.0.1 through 1.0.1f (inclusive) are vulnerable
OpenSSL 1.0.1g is NOT vulnerable
OpenSSL 1.0.0 branch is NOT vulnerable
OpenSSL 0.9.8 branch is NOT vulnerable

The known bug was introduced to OpenSSL in December 2011 and has been out in the wild since OpenSSL release 1.0.1 on 14th of March 2012.
OpenSSL 1.0.1g released on 7th of April 2014 fixes the bug.

Labels:
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Quick Links
Discussions
Customers Also Viewed These Support Documents