Security Notice - VN-2016-001 OpenSSH

  • 28 January 2016
  • 5 replies
  • 91 views

Userlevel 7
This vulnerability notice provides the official technical response from Extreme Networks regarding the OpenSSH vulnerabilities identified in CVE-2016-0777 and CVE-2016-0778.
VN-2016-001 – OpenSSH

The impacts of these vulnerabilities include possible unauthorized disclosure of information.

Customers with a current maintenance and support contract may access the Support Portal at: http://support.extremenetworks.com/
If you have additional questions concerning this information, please contact your Extreme Networks representative, or comment in this thread.
NOTE: Extreme Vulnerability Notices are now posted on GTAC Knowledge.

5 replies

How do I know if this affects me ?
Userlevel 6
Hi Tonya,

You can check the link below and check if the platform is affected:

https://gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2016-001-OpenSSH
Userlevel 6
Perfect. Thanks Henrique. Glad to see you joined us!

This is the first Vulnerability we've distributed on GTAC Knowledge. Believe this change will make it easier for our customers & partners to find and take action on these critical notices.

Based on the amount of positive comments we got back yesterday, I believe the community approves!
Userlevel 2
Is there a fix available for Netsight and NAC? I was not able to find more informations about this.
Userlevel 7
Is there a fix available for Netsight and NAC? I was not able to find more informations about this.It looks like a fix for this will be available in NetSight 6.3 and 7.0, targeted for March 2016.

You can find this in the vulnerability notice linked below:
VN-2016-001 – OpenSSH

Reply