VULNERABILITY after patching to the latest
search cancel

VULNERABILITY after patching to the latest

book

Article ID: 391393

calendar_today

Updated On:

Products

CA API Gateway

Issue/Introduction

We are seeing below vulnerabilities in the critical state with the latest patch Layer7_API_PlatformUpdate_64bit_v11.0-Debian-2025-01-26.zip.

Debian 11.0

https://security-tracker.debian.org/tracker/CVE-2023-52735 

https://security-tracker.debian.org/tracker/CVE-2022-37454    CVE-2022-37454-python3.9

https://security-tracker.debian.org/tracker/CVE-2024-47685

Environment

Gateway 11.1.1

Resolution

Recommened updating to gateway 11.1 then apply the Febuary 2025 MPP

CVE Library vulnerable Debain fixed Gateway 11.1.1 status
CVE-2023-52735 Linus (PTS) 6.1.124-1 6.1.128-1 fixed MPP 1-26-2025
CVE-2022-37454 python 3.9 Not effected Not effected Not effected python 3.11
CVE-2024-47685 linux (PTS) 6.1.124-1 6.1.128-1 fixed MPP Febuary 2025
CVE-2024-47685 linux-6.1 (PTS) 6.1.124-1 6.2.38.1-5+deb12u3 fixed MPP Febuary 2025

 

Powered by Wolken Software