Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Thin
Contributor
Jump to solution

After Update IPS, Not found CVE-2019-17638 signature

Hello

I have a question about IPS Signature again.

Refer to https://research.checkpoint.com/2020/24th-august-threat-intelligence-bulletin/ 

I see Check Point IPS provides protection against this threat (Jenkins Jetty Buffer Overflow (CVE-2019-17638)) but  when I update ips, there is no CVE-2019-17638 signature.

What should I do to find CVE-2019-17638 signature in Check Point IPS?

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin

According to developers, the protection is currently being tested for making sure it is effective and reliable. It should be visible in the next IPS update, which is due to be out in a day or two.

View solution in original post

0 Kudos
8 Replies
G_W_Albrecht
Legend Legend
Legend

This is a bug in Embedded Jetty version9.4.27 -9.4.29 :

https://github.com/eclipse/jetty.project/issues/4936

I would rather use the fixed Jetty 😉

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Thin
Contributor

Thank you. Actually, I need IPS signature in Check Point IPS for CVE-2019-17638.

0 Kudos
G_W_Albrecht
Legend Legend
Legend

Because you still need to have Embedded Jetty version9.4.27 -9.4.29 installed ? What am i missing here ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Thin
Contributor

I cannot proceed that, It is out of my work scope and my colleague needs CVE-2019-17638 IPS signature in Check Point.

0 Kudos
_Val_
Admin
Admin

@G_W_Albrecht the question is legit. I am checking with R&D

 

0 Kudos
_Val_
Admin
Admin

According to developers, the protection is currently being tested for making sure it is effective and reliable. It should be visible in the next IPS update, which is due to be out in a day or two.

0 Kudos
Adi_Ikan
Employee Alumnus
Employee Alumnus

The protection has been released, more info can be found in the dedicated advisory page.

0 Kudos
Thin
Contributor

Thank you so much, I have already updated the protection.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events