OpenSSL Vulnerability (PAN-SA-2017-0017)

Last revised: 07/20/2017

Summary

The OpenSSL library has been found to contain vulnerability CVE-2016-8610. Palo Alto Networks software makes use of the vulnerable library and may be affected. (Ref # PAN-68543 / CVE-2016-8610)

Severity: Medium

The OpenSSL library in use by PAN-OS is patched on a regular basis.

Products Affected

PAN-OS 6.1.17 and earlier, PAN-OS 7.0.15 and earlier, PAN-OS 7.1.10 and earlier

Available Updates

PAN-OS 6.1.18 and later, PAN-OS 7.0.16 and later, PAN-OS 7.1.11 and later

Workarounds and Mitigations

N/A

Acknowledgements

N/A