BSA-2017-260

Brocade Fabric OS

2 more products

21496

02 May 2017

02 May 2017

Closed

Medium

5.9

N/A

CVE-2017-3732

Summary

Security Advisory ID : BSA-2017-260

Component : DH Parameters

Revision : 1.0: Interim

There is a carry propagating bug in the x86_64 Montgomery squaring procedure. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely.

Affected Products

Product Current Assessment
Brocade ServerIron ADX Impacted: Fixed in 12.5.02n.
Brocade Virtual ADX Impacted: Fixed in 4.0.00f.
Brocade Virtual Web Application Firewall Impacted: Fixed in 4.9-41672.

Products Confirmed Not Vulnerable

Brocade FastIron OS, Brocade NetIron OS, and Brocade SLX-OS are confirmed not affected by this vulnerability.

Products Confirmed Not Vulnerable

There are no workarounds that address this vulnerability.

Revision History

Version Change Date
1.0 Initial Publication May 2, 2017