https://community.hpe.com/t5/operating-system-openvms/question-about-tcpip-security-patch/m-p/5232011#M98152 Jan,<BR /><BR />these issues are already being discussed in the following thread:<BR /><BR /><A href="http://forums13.itrc.hp.com/service/forums/questionanswer.do?threadId=1417205" target="_blank">http://forums13.itrc.hp.com/service/forums/questionanswer.do?threadId=1417205</A><BR /><BR />Volker. Thu, 25 Mar 2010 09:40:06 GMT Volker Halle 2010-03-25T09:40:06Z https://community.hpe.com/t5/operating-system-openvms/question-about-tcpip-security-patch/m-p/5232010#M98151 <A href="http://www.openvms.org" target="_blank">www.openvms.org</A> says:<BR /><BR />Security issue reported for TCPIP V5.5 and V5.6 <BR />Posted by Ian on Wednesday March 24 2010 @ 05:17AM EDT <BR />HPSBOV02497 SSRT090245 reports Potential security vulnerabilities have been identified with HP TCP/IP Services for OpenVMS Running NTP (V5.5, V5.6) <BR />References: SSRT090073, CVE-2009-0159, CVE-2009-0696, CVE-2009-1252, CVE-2009-3563 <BR /><BR />Updated images are available for <BR /><BR />TCPIP Alpha &amp; I64 V5.5 ECO3 <BR />TCPIP Alpha &amp; I64 V5.6 ECO4 <BR />For more information see HPSBOV02497 SSRT090245 rev.1 - HP TCP/IP Services for OpenVMS Running NTP <BR /><BR />SSRT090073 is listed as fixed in TCPIP V5.6 ECO5 release notes. <BR /><BR />end quote openvms.org<BR /><BR />My question is:<BR />does this mean that CVE-2009-0159, CVE-2009-0696, CVE-2009-1252, CVE-2009-3563 are not fixed in ECO5 ? but are fixed in ECO3 and ECO4?<BR /> Thu, 25 Mar 2010 09:03:53 GMT https://community.hpe.com/t5/operating-system-openvms/question-about-tcpip-security-patch/m-p/5232010#M98151 Jan van den Boogaard_1 2010-03-25T09:03:53Z https://community.hpe.com/t5/operating-system-openvms/question-about-tcpip-security-patch/m-p/5232011#M98152 Jan,<BR /><BR />these issues are already being discussed in the following thread:<BR /><BR /><A href="http://forums13.itrc.hp.com/service/forums/questionanswer.do?threadId=1417205" target="_blank">http://forums13.itrc.hp.com/service/forums/questionanswer.do?threadId=1417205</A><BR /><BR />Volker. Thu, 25 Mar 2010 09:40:06 GMT https://community.hpe.com/t5/operating-system-openvms/question-about-tcpip-security-patch/m-p/5232011#M98152 Volker Halle 2010-03-25T09:40:06Z https://community.hpe.com/t5/operating-system-openvms/question-about-tcpip-security-patch/m-p/5232012#M98153 Thnx Volker! Thu, 25 Mar 2010 10:04:59 GMT https://community.hpe.com/t5/operating-system-openvms/question-about-tcpip-security-patch/m-p/5232012#M98153 Jan van den Boogaard_1 2010-03-25T10:04:59Z