Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Steffen_Appel
Advisor
Jump to solution

Is checkpoint affected by CVE-2018-25032 (zlib)

A buf was found in zlib which affects many programs including the linux kernel, are any components of Checkpoint affected by CVE-2018-25032?

 

According to the lib version libz.so.1 -> libz.so.1.2.3 it is.

1 Solution

Accepted Solutions
_Val_
Admin
Admin

Thanks for your patience, guys. 

 

The official answer is: we are not vulnerable. I do not think there will be an SK for this though, as this was a low priority from the start.

View solution in original post

0 Kudos
7 Replies
_Val_
Admin
Admin

Checking, will update ASAP

Steffen_Appel
Advisor

Any update Val?

0 Kudos
_Val_
Admin
Admin

We are still checking. I will update once the info is available. I have to note, this is a very old bug, so chances it is relevant for us are not especially high.

0 Kudos
PhoneBoy
Admin
Admin

As I understand the bug, it is unlikely that it can be exploited remotely or without having expert mode access to the gateway.
This lessens the need for an immediate fix for this issue (assuming it is present).
In any case, if you haven't opened a TAC case for a formal response already, I suggest you do so.

0 Kudos
the_rock
Legend
Legend

I did some research on this myself and given the fact that cve you provided does not even come up in ips database or support site, I will take liberty in saying that most likely its not applicable. I also searched for anything cve-2018 and looks about 95% of those signatures are set to prevent.

Andy

0 Kudos
_Val_
Admin
Admin

Thanks for your patience, guys. 

 

The official answer is: we are not vulnerable. I do not think there will be an SK for this though, as this was a low priority from the start.

0 Kudos
Steffen_Appel
Advisor

Thanks!

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events