Reset Search
 

 

Article

Dragon: Is Dragon v7.5 IPS vulnerable to the openssl CVE-2015-1793 vulnerability?

« Go Back

Information

 
TitleDragon: Is Dragon v7.5 IPS vulnerable to the openssl CVE-2015-1793 vulnerability?
Question
Is Dragon v7.5  IPS vulnerable to the openssl CVE-2015-1793 vulnerability?
Environment
Dragon v7.5
Answer
The v7.5 ISO runs openssl version 0.9.8km which is not listed as one of the vulnerable versions of openSSL.

You can check the ISO installed on your Dragon machine through the command: more /etc/da-version

DAR 4.0 94 is the v7.5 ISO image.
You can also check the openssl version on your Dragon systems through the command: openssl version

=========
CVE-2015-1793

Description
The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger unintended certificate verifications via a valid leaf certificate.
Additional notes

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255