• April 22, 2019, 05:00:56 AM
Welcome, Guest. Please login or register. Registration is free.
Did you miss your activation email?

Author Topic: Are Brocade SAN products affected by the Heartbleed bug?  (Read 1740 times)

0 Members and 1 Guest are viewing this topic.

Offline Martin2341

  • Rookie
  • **
  • Posts: 21
Are Brocade SAN products affected by the Heartbleed bug?
« on: April 11, 2014, 07:24:35 PM »
Brocade’s family of SAN products running the Fabric OS or FOS software as well as the Brocade Network Advisor software program do not make use of the heartbeat extensions and hence are not vulnerable to the exploit documented in CVE-2014-0160. In addition, the MyBrocade.com web site does not use OpenSSL thus is not vulnerable to this issue.

Links to the CVE detailing out the "bug":
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0160

OpenSSL vulnerability listing on CERT site:
http://www.kb.cert.org/vuls/id/720951

EDIT: If you are interested, the Brocade documentation on the above is available via the link below:
http://www.brocade.com/downloads/documents/technical_support_bulletins/brocade-products-website-not-affected-by-heartbleed.pdf
« Last Edit: April 15, 2014, 07:31:02 PM by Martin2341 »