Deficiencies in releases of OpenSSL libraries:
The SSL, TLS and DTLS implementations in OpenSSL versions 1.0.1 through 1.0.1f (inclusive) do not securely handle Heartbeat Extension packets. This may allow remote attackers to obtain sensitive information that applications use for establishing secured communication with SSL.
For more information about the OpenSSL vulnerability (Heartbleed bug), you can refer to the advisory: http://www.openssl.org/news/secadv_20140407.txt .
Products:
At the current state of investigations, we can communicate that your product installations are affected if you are using any of the following:
|
Product |
Platform |
Feature Enabled |
Affected Versions |
|
ASE |
Any Platform |
SSL/TLS |
ASE 15.7 SP60, SP61 ASE 15.7 SP120, SP121 ASE 16.0 |
|
ASE |
Win64 |
SSL/TLS |
ASE 15.7 SP60, SP61 ASE 15.7 SP100, SP101, SP102, SP103 ASE 15.7 SP110, SP120, SP121 ASE 16.0 |
|
ASE |
Any Platform |
LDAP + SSL/TLS |
ASE 15.7 SP60, SP61 ASE 15.7 SP100, SP101, SP102, SP103 ASE 15.7 SP110, SP120, SP121 ASE 16.0 |
| IQ | Any Platform |
IQ 15.4 ESD4 IQ 16.0 SP02 IQ 16.0 SP03 | |
| Replication Server | Any Platform | Replication Server 15.7.1 SP100, SP101, SP102, SP110, SP111, SP120, SP200 | |
| PowerDesigner | Any Platform | PowerDesigner 16.5 SP02, SP03 | |
| Power AMC | Any Platform | PowerAMC 16.5 SP02, SP03 | |
| SQL Anywhere | Any Platform | (Database Server) TLS Clients HTTPS Web Services HTTPS Procedures (MobiLink Server) TLS HTTPS (Relay Server Outbound Enabler) HTTPS |
SQL Anywhere 12.0.1 SP66, SP68 , SP69, & SP70 SQL Anywhere 16.0 SP6, SP7, SP8, SP9 |
| SQL Anywhere OnDemand | Any Platform | (Database Server) TLS Clients HTTPS Web Services HTTPS Procedures |
SQL Anywhere OnDemand 1.0 SP4 |
| Mobile Platform and SDK |
Windows Linux |
SMP 3.0 SP00, SP01, SP02, SP03 SMP 2.3 SP04 | |
| Afaria | Any Platform | Afaria 7 SP4, including HotFixes 1-4 (HF01-HF04) | |
| Relay Server | Any Platform | Relay Server | |
| Software Developer Kit (SDK) | Any Platform |
Software Developer Kit 15.7 ESD#6, ESD #7, SP100, SP101, SP102, SP103, SP110, SP111, SP120, SP121, SP122, SP123, SP124, SP125 Software Developer Kit 16.0, 16.0 PL01 | |
| Open Server | Any Platform |
Open Server 15.7 ESD#6, ESD #7, SP100, SP101, SP102, SP103, SP110, SP111, SP120, SP121, SP122, SP123, SP124, SP125 Open Server 16.0, 16.0 PL01 | |
| SDK for SAP ASE | Any Platform |
SDK for SAP ASE 15.7 SP122, SP123, SP124, SP125 SDK for SAP ASE 16.0, 16.0 PL01 | |
| ECDA | Any Platform | ECDA 15.7, 15.7 SP01 |
'IT 와 Social 이야기' 카테고리의 다른 글
| [Pier Luca Lanzi] Machine Learning and Data Mining: 13 Nearest Neighbor and Bayesian Classifiers (0) | 2014.04.17 |
|---|---|
| [Antonio De Pasquale] Responsive Web Design (0) | 2014.04.17 |
| [space150] Trending the Future: Apple iBeacon (0) | 2014.04.17 |
| [500 Startups] Product Development & Culture (0) | 2014.04.16 |
| [Dave Gray] When Service Design meets the Connected Company (0) | 2014.04.16 |