Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Thin
Contributor

After Update IPS, Not found CVE-2019-17638 signature

Jump to solution

Hello

I have a question about IPS Signature again.

Refer to https://research.checkpoint.com/2020/24th-august-threat-intelligence-bulletin/ 

I see Check Point IPS provides protection against this threat (Jenkins Jetty Buffer Overflow (CVE-2019-17638)) but  when I update ips, there is no CVE-2019-17638 signature.

What should I do to find CVE-2019-17638 signature in Check Point IPS?

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin

According to developers, the protection is currently being tested for making sure it is effective and reliable. It should be visible in the next IPS update, which is due to be out in a day or two.

View solution in original post

0 Kudos
8 Replies
G_W_Albrecht
Legend
Legend

This is a bug in Embedded Jetty version9.4.27 -9.4.29 :

https://github.com/eclipse/jetty.project/issues/4936

I would rather use the fixed Jetty 😉

0 Kudos
Thin
Contributor

Thank you. Actually, I need IPS signature in Check Point IPS for CVE-2019-17638.

0 Kudos
G_W_Albrecht
Legend
Legend

Because you still need to have Embedded Jetty version9.4.27 -9.4.29 installed ? What am i missing here ?

0 Kudos
Thin
Contributor

I cannot proceed that, It is out of my work scope and my colleague needs CVE-2019-17638 IPS signature in Check Point.

0 Kudos
_Val_
Admin
Admin

@G_W_Albrecht the question is legit. I am checking with R&D

 

0 Kudos
_Val_
Admin
Admin

According to developers, the protection is currently being tested for making sure it is effective and reliable. It should be visible in the next IPS update, which is due to be out in a day or two.

View solution in original post

0 Kudos
Adi_Ikan
Employee
Employee

The protection has been released, more info can be found in the dedicated advisory page.

0 Kudos
Thin
Contributor

Thank you so much, I have already updated the protection.

0 Kudos