Self-Solve Knowledge Search

Minimize Maximize
Mitigate CVE-2015-7547 Logjam vulnerability for Connect-It
Title :
Mitigate CVE-2015-7547 Logjam vulnerability for Connect-It
Document ID :
KM02265035
Product - Version:
connect it 9.60 9.53 ;
OS :
Updated :
Tue Apr 26 16:56:12 GMT 2016
Summary :
The Linux GNU C library (glibc) exposes new vulnerabilities as described in CVE-2015-7547. HPE has investigated the CVE-2015-7547 in relation to HPE Asset Manager and this document provides the required actions that must be performed to mitigate this vulnerability.
The Linux GNU C library (glibc) exposes new vulnerabilities as described in CVE-2015-7547.
The glibc DNS client side resolver is vulnerable to a stack-based buffer overflow when the getaddrinfo library function is used.
Software using this function may be exploited with attacker-controlled domain names, attacker-controlled DNS servers, or through a man-in-the-middle attack.
HPE has investigated the CVE-2015-7547 in relation to HPE Asset Manager and this document provides the required actions that must be performed to mitigate this vulnerability.
 
For detailed information about this vulnerability and how to mitigate it for Connect-IT, see the attached PDF document.