BSA-2016-198
21430
14 December 2016
14 December 2016
Closed
High
9.8
N/A
CVE-2016-5421
Summary
Security Advisory ID : BSA-2016-198
Component : curl/libcurl
Revision : 1.0: Final
Use-after-free vulnerability in libcurl before 7.50.1 allows attackers to control which connection is used or possibly have unspecified other impact via unknown vectors.
Affected ProductsProduct | Current Assessment |
---|---|
Brocade 5600 vRouter | Impacted: Fixed in 5.2R1. |
Brocade Virtual Traffic Manager | Impacted: Fixed in 9.9r2, 10.4r1, and 11.1. |
Brocade FastIron, Brocade NetIron, Brocade Network Advisor, Brocade SDN Controller, Brocade ServerIron ADX, Brocade SLX-OS, Brocade Virtual ADX, and Brocade Virtual Web Application Firewall.
SolutionBrocade has fixed the vulnerability described in this advisory. The patch releases have been posted to the MyBrocade web portal. Brocade strongly recommends that all customers running the impacted version(s) install the patch.
WorkaroundThere are no workarounds that address this vulnerability.
Revision History
Version | Change | Date |
---|---|---|
1.0 | Initial Publication | December 14, 2016 |