OpenSSL Vulnerability in 14.3 RU6 Endpoint Protection Linux agent
search cancel

OpenSSL Vulnerability in 14.3 RU6 Endpoint Protection Linux agent

book

Article ID: 272884

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

OpenSSL vulnerability found in “/opt/Symantec/sdcssagent/sharedlib/libcrypto.so.3” in Symantec Endpoint Protection (SEP) agent for Linux

CVE: CVE-2023-2975, CVE-2023-3446, CVE-2023-3817

Environment

SEP 14.3 RU6

Resolution

SEP Linux RU6 and earlier use OpenSSL versions 3.0.7 and 1.1.1m.

CVE-2023-2975, CVE-2023-3446, and CVE-2023-3817:
OpenSSL has been upgraded to 3.1.3 in SEP Linux 14.3 RU8.

https://www.openssl.org/
https://www.openssl.org/news/secadv/20230731.txt
https://www.openssl.org/news/secadv/20230719.txt

 

Powered by Wolken Software