Operating System - OpenVMS
cancel
Showing results for 
Search instead for 
Did you mean: 

Question about TCPIP Security patch

 
SOLVED
Go to solution
Jan van den Boogaard_1
Frequent Advisor

Question about TCPIP Security patch

www.openvms.org says:

Security issue reported for TCPIP V5.5 and V5.6
Posted by Ian on Wednesday March 24 2010 @ 05:17AM EDT
HPSBOV02497 SSRT090245 reports Potential security vulnerabilities have been identified with HP TCP/IP Services for OpenVMS Running NTP (V5.5, V5.6)
References: SSRT090073, CVE-2009-0159, CVE-2009-0696, CVE-2009-1252, CVE-2009-3563

Updated images are available for

TCPIP Alpha & I64 V5.5 ECO3
TCPIP Alpha & I64 V5.6 ECO4
For more information see HPSBOV02497 SSRT090245 rev.1 - HP TCP/IP Services for OpenVMS Running NTP

SSRT090073 is listed as fixed in TCPIP V5.6 ECO5 release notes.

end quote openvms.org

My question is:
does this mean that CVE-2009-0159, CVE-2009-0696, CVE-2009-1252, CVE-2009-3563 are not fixed in ECO5 ? but are fixed in ECO3 and ECO4?
2 REPLIES 2
Volker Halle
Honored Contributor
Solution

Re: Question about TCPIP Security patch

Jan,

these issues are already being discussed in the following thread:

http://forums13.itrc.hp.com/service/forums/questionanswer.do?threadId=1417205

Volker.
Jan van den Boogaard_1
Frequent Advisor

Re: Question about TCPIP Security patch

Thnx Volker!