Support Content Notification - Support Portal

BSA-2017-335

Product/Component

Brocade Fabric OS

2 more products

Notification Id

21385

Last Updated

08 September 2017

Initial Publication Date

23 June 2017

Status

Closed

Severity

Low

CVSS Base Score

3.3

WorkAround

N/A

Affected CVE

CVE-2016-9842

Summary
Security Advisory ID : BSA-2017-335
Component : zlib
Revision : 2.0: Interim

The C standard says that bit shifts of negative integers is undefined.  This casts to unsigned values to assure a known result.

Affected Products

Product	Current Assessment
Brocade Virtual Web Application Firewall	Impacted: Upgrade to 4.9-42756.

Products Confirmed Not Vulnerable

Brocade Fabric OS, Brocade FastIron OS, Brocade NetIron OS, Brocade Network Advisor, Brocade ServerIronADX, Brocade SLX-OS, and Brocade Virtual ADX are confirmed not affected by this vulnerability.

Workaround

There are no workarounds that address this vulnerability.

Revision History

Version	Change	Date
1.0	Initial Publication	June 23, 2017
2.0	Updated to address BNA	September 8, 2017

Summary Security Advisory ID : BSA-2017-335 Component : zlib Revision : 2.0: Interim

Affected Products

Products Confirmed Not Vulnerable

Workaround

Revision History

Summary
Security Advisory ID : BSA-2017-335
Component : zlib
Revision : 2.0: Interim