ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Is Symantec Security Information Manager (SSIM) v4.8.1 vulnerable glibc "ghost" CVE-2015-0235?

book

Article ID: 161661

calendar_today

Updated On:

Products

Security Information Manager

Issue/Introduction

SSIM 4.8.1 has glibc libraries and you would like to know it is vulnerable to glibc "ghost" CVE-2015-0235?

Resolution

SSIM versions 4.8.1 uses glibc reported in "ghost" CVE-2015-0235 and is vulnerable.    

To further secure SSIM 4.8.1 from the"ghost" CVE-2015-0235 , apply the Hotfix attached to this article.

NOTE : Once you copy the HotFix & md5 file to /tmp and su -  to root, run the following command before you do an md5 checksum:

dos2unix 4.8.1_Hotfix-8.tar.gz.md5  <-- If you are using SSIM 4.8.1 or higher

 

 

 

Attachments

README.TXT get_app
4.8.1_Hotfix-8.tar.gz.md5 get_app
4.8.1_Hotfix-8.tar.gz get_app