12.8 SP4 SPS (CA Access Gateway) Built-in Support for CVE-2020-1938 " (Ghostcat vulnerability) " Vulnerability Fix.

book

Article ID: 198435

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction

12.8 SP4 SPS (CA Access Gateway) Built-in Support for CVE-2020-1938 " (Ghostcat vulnerability) " Vulnerability Fix.

Environment

CA/Brodcom CA Access Gateway (AKA CA SPS (Secure Proxy Server)) Version 12.8 SP4

Component : SMSPS

Resolution

Built-in Support for CVE-2020-1938 Vulnerability Fix:

The CVE-2020-1938 vulnerability (Ghostcat vulnerability) fix that was previously delivered as a patch is now available as a built-in fix from Release 12.8.04. For releases 12.8 through 12.8.03, the fix is available as a patch and must be manually deployed.

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-identity-and-access-management/single-sign-on/12-8/release-notes/New-Features/New-Features-in-12_8_04.html#concept.dita_25df7fc3-60f0-4e01-b135-1118d9f57a65_Built-inSupportforCVE-2020-1938VulnerabilityFix