日本語による情報は、英語による原文の非公式な翻訳であり、英語原文との間で内容の齟齬がある場合には、英語原文が優先します。
2010 年 9 月 22 日の IOS® ソフトウェア アドバイザリ バンドル公開には 6 件の Cisco Security Advisory が含まれています。5 件のアドバイザリは Cisco IOS ソフトウェアの脆弱性に対処するもので、1 件は Cisco Unified Communications Manager の脆弱性に対処するものです。各アドバイザリには、そのアドバイザリで詳述された脆弱性を解決するリリースを記載しています。2010 年 9 月 22 日およびそれ以前に公開されたすべての Cisco IOS ソフトウエアの 脆弱性に対応したリリースについては、以下のテーブルをご参照下さい。
個々の公開リンクは、次のリンクにある「Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication」内に掲載されています。
http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep10.html
以下のリストにも個々の公開リンクを記載します。
この要約ページは、次のリンクに掲載されます。 http://www.cisco.com/warp/public/707/cisco-sa-20100922-bundle.shtml
ソフトウェアのアップグレードを検討する際には、 http://www.cisco.com/go/psirt/ および本アドバイザリ以降に公開のアドバイザリも参照して、起こりうる障害と完全なアップグレード ソリューションを判断してください。
いずれの場合も、アップグレードするデバイスに十分なメモリがあること、および現在のハードウェアとソフトウェアの構成が新しいリリースで引き続き適切にサポートされていることの確認を十分に行ってください。情報が不明確な場合は、Cisco Technical Assistance Center(TAC)もしくは契約しているメンテナンス プロバイダーにお問い合わせください。
次の Cisco IOS ソフトウェア テーブルの各行は Cisco IOS ソフトウェア トレインに対応します。あるトレインが脆弱である場合、「First Fixed Release for All Advisories in the September 2010 Bundle Publication」列は、Cisco IOS ソフトウェア アドバイザリ バンドル公開で公開済みであるすべての脆弱性を修正する最初のリリースを記載しています。シスコは利用可能な最新のリリースへのアップグレードを推奨します。
Major Release |
Availability of Repaired Releases |
|
---|---|---|
Affected 12.0-Based Releases |
First Fixed Release for All Advisories in the September 2010 Bundle Publication |
|
There are no affected 12.0 based releases |
||
Affected 12.1-Based Releases |
First Fixed Release for All Advisories in the September 2010 Bundle Publication |
|
12.1 |
Vulnerable; first fixed in 12.4T Releases up to and including 12.1(4b) are not vulnerable. |
|
12.1AA |
Not vulnerable |
|
12.1AX |
Not vulnerable |
|
12.1AY |
Not vulnerable |
|
12.1AZ |
Not vulnerable |
|
12.1CX |
Not vulnerable |
|
12.1DA |
Not vulnerable |
|
12.1DB |
Not vulnerable |
|
12.1DC |
Not vulnerable |
|
12.1E |
Not vulnerable |
|
12.1EA |
Not vulnerable |
|
12.1EB |
Not vulnerable |
|
12.1EC |
Not vulnerable |
|
12.1EO |
Not vulnerable |
|
12.1EU |
Not vulnerable |
|
12.1EV |
Not vulnerable |
|
12.1EW |
Not vulnerable |
|
12.1EX |
Not vulnerable |
|
12.1EY |
Not vulnerable |
|
12.1EZ |
Not vulnerable |
|
12.1GA |
Not vulnerable |
|
12.1GB |
Not vulnerable |
|
12.1T |
Vulnerable; first fixed in 12.4T Releases up to and including 12.1(3a)T8 are not vulnerable. |
|
12.1XA |
Not vulnerable |
|
12.1XB |
Not vulnerable |
|
12.1XC |
Not vulnerable |
|
12.1XD |
Not vulnerable |
|
12.1XE |
Not vulnerable |
|
12.1XF |
Not vulnerable |
|
12.1XG |
Not vulnerable |
|
12.1XH |
Not vulnerable |
|
12.1XI |
Vulnerable; first fixed in 12.4T |
|
12.1XJ |
Vulnerable; first fixed in 12.4T |
|
12.1XL |
Vulnerable; first fixed in 12.4T |
|
12.1XM |
Vulnerable; first fixed in 12.4T |
|
12.1XP |
Vulnerable; first fixed in 12.4T |
|
12.1XQ |
Vulnerable; first fixed in 12.4T |
|
12.1XR |
Vulnerable; first fixed in 12.4T |
|
12.1XS |
Vulnerable; first fixed in 12.4T Releases up to and including 12.1(3)XS are not vulnerable. |
|
12.1XT |
Vulnerable; first fixed in 12.4T Releases up to and including 12.1(2)XT2 are not vulnerable. |
|
12.1XU |
Vulnerable; first fixed in 12.4T |
|
12.1XV |
Vulnerable; first fixed in 12.4T |
|
12.1XW |
Not vulnerable |
|
12.1XX |
Not vulnerable |
|
12.1XY |
Vulnerable; first fixed in 12.4T Releases up to and including 12.1(4)XY are not vulnerable. |
|
12.1XZ |
Not vulnerable |
|
12.1YA |
Vulnerable; first fixed in 12.4T |
|
12.1YB |
Vulnerable; first fixed in 12.4T |
|
12.1YC |
Vulnerable; first fixed in 12.4T |
|
12.1YD |
Vulnerable; first fixed in 12.4T |
|
12.1YE |
Releases prior to 12.1(5)YE6 are vulnerable, release 12.1(5)YE6 and later are not vulnerable; first fixed in 12.4T |
|
12.1YF |
Vulnerable; first fixed in 12.4T |
|
12.1YH |
Vulnerable; first fixed in 12.4T |
|
12.1YI |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.1YJ |
Not vulnerable |
|
Affected 12.2-Based Releases |
First Fixed Release |
|
12.2 |
Vulnerable; first fixed in 12.4T |
|
12.2B |
Vulnerable; first fixed in 12.4T Releases up to and including 12.2(2)B7 are not vulnerable. |
|
12.2BC |
Not vulnerable |
|
12.2BW |
Vulnerable; first fixed in 12.4T |
|
12.2BX |
Vulnerable; first fixed in 12.2SB Releases up to and including 12.2(15)BX are not vulnerable. |
|
12.2BY |
Vulnerable; first fixed in 12.4T Releases up to and including 12.2(2)BY3 are not vulnerable. |
|
12.2BZ |
Not vulnerable |
|
12.2CX |
Not vulnerable |
|
12.2CY |
Not vulnerable |
|
12.2CZ |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2DA |
Not vulnerable |
|
12.2DD |
Vulnerable; first fixed in 12.4T |
|
12.2DX |
Vulnerable; first fixed in 12.4T |
|
12.2EW |
Not vulnerable |
|
12.2EWA |
Not vulnerable |
|
12.2EX |
Not vulnerable |
|
12.2EY |
Not vulnerable |
|
12.2EZ |
Not vulnerable |
|
12.2FX |
Not vulnerable |
|
12.2FY |
Not vulnerable |
|
12.2FZ |
Not vulnerable |
|
12.2IRA |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IRB |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IRC |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IRD |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IRE |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXA |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXB |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXC |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXD |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXE |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXF |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXG |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2IXH |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2JA |
Not vulnerable |
|
12.2JK |
Not vulnerable |
|
12.2MB |
Not vulnerable |
|
12.2MC |
Releases up to and including 12.2(15)MC1 are not vulnerable. Releases 12.2(15)MC2b and later are not vulnerable; first fixed in 12.4T |
|
12.2MRA |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2MRB |
12.2(33)MRB2 |
|
12.2S |
Releases prior to 12.2(30)S are vulnerable, release 12.2(30)S and later are not vulnerable |
|
12.2SB |
12.2(31)SB19 Releases prior to 12.2(33)SB5 are vulnerable, release 12.2(33)SB5 and later are not vulnerable |
|
12.2SBC |
Vulnerable; first fixed in 12.2SB |
|
12.2SCA |
Vulnerable; first fixed in 12.2SCB |
|
12.2SCB |
12.2(33)SCB9 |
|
12.2SCC |
12.2(33)SCC5 |
|
12.2SCD |
12.2(33)SCD3 |
|
12.2SE |
Not vulnerable |
|
12.2SEA |
Not vulnerable |
|
12.2SEB |
Not vulnerable |
|
12.2SEC |
Not vulnerable |
|
12.2SED |
Not vulnerable |
|
12.2SEE |
Not vulnerable |
|
12.2SEF |
Not vulnerable |
|
12.2SEG |
Not vulnerable |
|
12.2SG |
Releases prior to 12.2(40)SG are vulnerable, release 12.2(40)SG and later are not vulnerable; migrate to any release in 12.2SGA |
|
12.2SGA |
Not vulnerable |
|
12.2SL |
Not vulnerable |
|
12.2SM |
Not vulnerable |
|
12.2SO |
Not vulnerable |
|
12.2SQ |
Not vulnerable |
|
12.2SRA |
Releases prior to 12.2(33)SRA6 are vulnerable, release 12.2(33)SRA6 and later are not vulnerable |
|
12.2SRB |
Releases prior to 12.2(33)SRB1 are vulnerable, release 12.2(33)SRB1 and later are not vulnerable |
|
12.2SRC |
Not vulnerable |
|
12.2SRD |
Not vulnerable |
|
12.2SRE |
12.2(33)SRE1 |
|
12.2STE |
Not vulnerable |
|
12.2SU |
Vulnerable; first fixed in 12.4T |
|
12.2SV |
Releases prior to 12.2(29b)SV1 are vulnerable, release 12.2(29b)SV1 and later are not vulnerable; migrate to any release in 12.2SVD |
|
12.2SVA |
Not vulnerable |
|
12.2SVC |
Not vulnerable |
|
12.2SVD |
Not vulnerable |
|
12.2SVE |
Not vulnerable |
|
12.2SW |
Releases up to and including 12.2(21)SW1 are not vulnerable. Releases 12.2(25)SW12 and later are not vulnerable; first fixed in 12.4T |
|
12.2SX |
Releases up to and including 12.2(14)SX2 are not vulnerable. |
|
12.2SXA |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2SXB |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2SXD |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2SXE |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2SXF |
Releases prior to 12.2(18)SXF11 are vulnerable, release 12.2(18)SXF11 and later are not vulnerable |
|
12.2SXH |
Not vulnerable |
|
12.2SXI |
Not vulnerable |
|
12.2SY |
Not vulnerable |
|
12.2SZ |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2T |
Vulnerable; first fixed in 12.4T |
|
12.2TPC |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2XA |
Vulnerable; first fixed in 12.4T |
|
12.2XB |
Vulnerable; first fixed in 12.4T |
|
12.2XC |
Vulnerable; first fixed in 12.4T |
|
12.2XD |
Vulnerable; first fixed in 12.4T |
|
12.2XE |
Not vulnerable |
|
12.2XF |
Not vulnerable |
|
12.2XG |
Vulnerable; first fixed in 12.4T |
|
12.2XH |
Vulnerable; first fixed in 12.4T |
|
12.2XI |
Vulnerable; first fixed in 12.4T |
|
12.2XJ |
Vulnerable; first fixed in 12.4T |
|
12.2XK |
Vulnerable; first fixed in 12.4T |
|
12.2XL |
Vulnerable; first fixed in 12.4T |
|
12.2XM |
Vulnerable; first fixed in 12.4T |
|
12.2XN |
Vulnerable; first fixed in 12.2SB |
|
12.2XNA |
Please see Cisco IOS-XE Software Availability |
|
12.2XNB |
Please see Cisco IOS-XE Software Availability |
|
12.2XNC |
Please see Cisco IOS-XE Software Availability |
|
12.2XND |
Please see Cisco IOS-XE Software Availability |
|
12.2XNE |
Please see Cisco IOS-XE Software Availability |
|
12.2XNF |
Please see Cisco IOS-XE Software Availability |
|
12.2XO |
Not vulnerable |
|
12.2XQ |
Vulnerable; first fixed in 12.4T |
|
12.2XR |
Not vulnerable |
|
12.2XS |
Vulnerable; first fixed in 12.4T |
|
12.2XT |
Vulnerable; first fixed in 12.4T |
|
12.2XU |
Vulnerable; first fixed in 12.4T |
|
12.2XV |
Vulnerable; first fixed in 12.4T |
|
12.2XW |
Vulnerable; first fixed in 12.4T |
|
12.2YA |
Vulnerable; first fixed in 12.4T |
|
12.2YB |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YC |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YD |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YE |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YF |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YG |
Not vulnerable |
|
12.2YH |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YJ |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YK |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YL |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YM |
Vulnerable; first fixed in 12.4T |
|
12.2YN |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YO |
Not vulnerable |
|
12.2YP |
Not vulnerable |
|
12.2YQ |
Not vulnerable |
|
12.2YR |
Not vulnerable |
|
12.2YS |
Not vulnerable |
|
12.2YT |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YU |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YV |
Releases prior to 12.2(11)YV1 are vulnerable, release 12.2(11)YV1 and later are not vulnerable |
|
12.2YW |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YX |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YY |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2YZ |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZA |
Not vulnerable |
|
12.2ZB |
Releases up to and including 12.2(8)ZB are not vulnerable. |
|
12.2ZC |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZD |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZE |
Vulnerable; first fixed in 12.4T |
|
12.2ZF |
Vulnerable; first fixed in 12.4T |
|
12.2ZG |
Not vulnerable |
|
12.2ZH |
Vulnerable; first fixed in 12.4T |
|
12.2ZJ |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZL |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZP |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZU |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZX |
Not vulnerable |
|
12.2ZY |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.2ZYA |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
Affected 12.3-Based Releases |
First Fixed Release |
|
12.3 |
Vulnerable; first fixed in 12.4T |
|
12.3B |
Vulnerable; first fixed in 12.4T |
|
12.3BC |
Not vulnerable |
|
12.3BW |
Not vulnerable |
|
12.3EU |
Not vulnerable |
|
12.3JA |
Not vulnerable |
|
12.3JEA |
Not vulnerable |
|
12.3JEB |
Not vulnerable |
|
12.3JEC |
Not vulnerable |
|
12.3JED |
Not vulnerable |
|
12.3JK |
Releases up to and including 12.3(2)JK3 are not vulnerable. Releases 12.3(8)JK1 and later are not vulnerable; first fixed in 12.4T |
|
12.3JL |
Not vulnerable |
|
12.3JX |
Not vulnerable |
|
12.3T |
Vulnerable; first fixed in 12.4T |
|
12.3TPC |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.3VA |
Vulnerable; first fixed in 12.4T |
|
12.3XA |
Vulnerable; first fixed in 12.4T |
|
12.3XB |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.3XC |
Vulnerable; first fixed in 12.4T |
|
12.3XD |
Vulnerable; first fixed in 12.4T |
|
12.3XE |
Vulnerable; first fixed in 12.4T |
|
12.3XF |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.3XG |
Vulnerable; first fixed in 12.4T |
|
12.3XI |
Releases prior to 12.3(7)XI11 are vulnerable, release 12.3(7)XI11 and later are not vulnerable; first fixed in 12.2SB |
|
12.3XJ |
Vulnerable; first fixed in 12.4XR |
|
12.3XK |
Vulnerable; first fixed in 12.4T |
|
12.3XL |
Vulnerable; first fixed in 12.4T |
|
12.3XQ |
Vulnerable; first fixed in 12.4T |
|
12.3XR |
Vulnerable; first fixed in 12.4T |
|
12.3XS |
Vulnerable; first fixed in 12.4T |
|
12.3XU |
Vulnerable; first fixed in 12.4T |
|
12.3XW |
Vulnerable; first fixed in 12.4T |
|
12.3XX |
Vulnerable; first fixed in 12.4T |
|
12.3XY |
Vulnerable; first fixed in 12.4T |
|
12.3XZ |
Vulnerable; first fixed in 12.4T |
|
12.3YA |
Vulnerable; first fixed in 12.4T |
|
12.3YD |
Vulnerable; first fixed in 12.4T |
|
12.3YF |
Vulnerable; first fixed in 12.4XR |
|
12.3YG |
Vulnerable; first fixed in 12.4T |
|
12.3YH |
Vulnerable; first fixed in 12.4T |
|
12.3YI |
Vulnerable; first fixed in 12.4T |
|
12.3YJ |
Vulnerable; first fixed in 12.4T |
|
12.3YK |
Vulnerable; first fixed in 12.4T |
|
12.3YM |
Vulnerable; first fixed in 12.4T |
|
12.3YQ |
Vulnerable; first fixed in 12.4T |
|
12.3YS |
Vulnerable; first fixed in 12.4T |
|
12.3YT |
Vulnerable; first fixed in 12.4T |
|
12.3YU |
Vulnerable; first fixed in 12.4T |
|
12.3YX |
Vulnerable; first fixed in 12.4XR |
|
12.3YZ |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.3ZA |
Vulnerable; first fixed in 12.4T |
|
Affected 12.4-Based Releases |
First Fixed Release |
|
12.4 |
12.4(25d) |
|
12.4GC |
12.4(24)GC2 |
|
12.4JA |
Not vulnerable |
|
12.4JDA |
Not vulnerable |
|
12.4JDC |
Not vulnerable |
|
12.4JDD |
Not vulnerable |
|
12.4JHA |
Not vulnerable |
|
12.4JHB |
Not vulnerable |
|
12.4JK |
Not vulnerable |
|
12.4JL |
Not vulnerable |
|
12.4JMA |
Not vulnerable |
|
12.4JMB |
Not vulnerable |
|
12.4JX |
Not vulnerable |
|
12.4JY |
Not vulnerable |
|
12.4MD |
12.4(24)MD2 |
|
12.4MDA |
12.4(22)MDA4 12.4(24)MDA1 |
|
12.4MR |
Vulnerable; first fixed in 12.4MRA |
|
12.4MRA |
12.4(20)MRA1 |
|
12.4SW |
Vulnerable; first fixed in 12.4T |
|
12.4T |
12.4(15)T14 12.4(20)T6 12.4(24)T4 |
|
12.4XA |
Vulnerable; first fixed in 12.4T |
|
12.4XB |
Vulnerable; first fixed in 12.4T |
|
12.4XC |
Vulnerable; first fixed in 12.4T |
|
12.4XD |
Vulnerable; first fixed in 12.4T |
|
12.4XE |
Releases prior to 12.4(6)XE5 are vulnerable, release 12.4(6)XE5 and later are not vulnerable; first fixed in 12.4T |
|
12.4XF |
Vulnerable; first fixed in 12.4T |
|
12.4XG |
Vulnerable; first fixed in 12.4T |
|
12.4XJ |
Vulnerable; first fixed in 12.4T |
|
12.4XK |
Vulnerable; first fixed in 12.4T |
|
12.4XL |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.4XM |
Vulnerable; first fixed in 12.4T |
|
12.4XN |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.4XP |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.4XQ |
12.4(15)XQ6; Available on 22-SEP-10 |
|
12.4XR |
12.4(15)XR9 12.4(22)XR7 |
|
12.4XT |
Vulnerable; first fixed in 12.4T |
|
12.4XV |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.4XW |
Vulnerable; first fixed in 12.4T |
|
12.4XY |
Vulnerable; first fixed in 12.4T |
|
12.4XZ |
Vulnerable; first fixed in 12.4T |
|
12.4YA |
Vulnerable; first fixed in 12.4T |
|
12.4YB |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.4YD |
Vulnerable; Contact your support organization per the instructions in Obtaining Fixed Software section of this advisory |
|
12.4YE |
12.4(24)YE1 |
|
12.4YG |
12.4(24)YG3 |
|
Affected 15.0-Based Releases |
First Fixed Release |
|
15.0M |
15.0(1)M3 |
|
15.0S |
Cisco 7600 and 10000 Series routers: 15.0(1)S1 (available early October 2010) Please see Cisco IOS-XE Software Availability |
|
15.0XA |
Vulnerable; first fixed in 15.1T |
|
15.0XO |
Not vulnerable |
|
Affected 15.1-Based Releases |
First Fixed Release |
|
15.1T |
15.1(2)T1 |
|
15.1XB |
Vulnerable; first fixed in 15.1T |
Cisco IOS XE Release |
First Fixed Release for All Advisories in the September 2010 Bundle Publication |
---|---|
2.1.x |
Not vulnerable |
2.2.x |
Not vulnerable |
2.3.x |
Not vulnerable |
2.4.x |
Not vulnerable |
2.5.x |
Vulnerable; migrate to 2.6.2 or later |
2.6.x |
2.6.2 |
3.1.xS |
Not vulnerable |
Cisco IOS XR ソフトウェアは、2010 年 9 月 22 日の Cisco IOS ソフトウェアのアドバイザリ バンドルで公開される脆弱性の影響を受けません。
シスコはこれらの脆弱性に対応するための無償ソフトウェア アップデートを提供しています。ソフトウェアの導入を行う前にお客様のメンテナンス プロバイダーにご相談いただくかソフトウェアのフィーチャ セットの互換性およびお客様のネットワーク環境に特有の問題に関してご確認下さい。
お客様がインストールしたりサポートを受けたりできるのは、ご購入いただいたフィーチャ セットに対してのみとなります。そのようなソフトウェア アップグレードをインストール、ダウンロード、アクセスまたはその他の方法で使用した場合、お客様は http://www.cisco.com/en/US/docs/general/warranty/English/EU1KEN_.html に記載のシスコのソフトウェア ライセンスの条項または、Cisco.com Downloads の http://www.cisco.com/public/sw-center/sw-usingswc.shtml に説明のあるその他の条項に従うことに同意したことになります。
ソフトウェアのアップグレードに関し、psirt@cisco.com もしくは security-alert@cisco.com にお問い合わせいただくことはご遠慮ください。
サービス契約をご利用のお客様は、通常のアップデート チャネルからアップグレード ソフトウェアを入手してください。ほとんどのお客様は、シスコのワールドワイド Web サイト上の Software Center からアップグレードを入手することができます。 http://www.cisco.com
シスコ パートナー、正規販売代理店、サービス プロバイダーなど、サードパーティのサポート会社と以前に契約していたか、または現在契約しており、その会社からシスコ製品の提供または保守を受けているお客様は、該当するサポート会社に連絡し、本脆弱性に関する適切な処置について指示と支援を受けてください。
回避策の効果は、使用製品、ネットワーク トポロジー、トラフィックの性質や組織の目的などのお客様の状況に依存します。影響製品が多種多様であるため、回避策を実際に展開する前に、対象とするネットワークで適用する回避策が最適であるか、お客様のサービス プロバイダーやサポート会社にご相談ください。
シスコから直接購入したがシスコのサービス契約をご利用いただいていない場合、また、サードパーティ ベンダーから購入したが修正済みソフトウェアを購入先から入手できない場合は、Cisco Technical Assistance Center(TAC)に連絡してアップグレードを入手してください。TAC の連絡先は次のとおりです。
無償アップグレードの対象であることをご証明いただくために、製品のシリアル番号と、このお知らせの URL をご用意ください。サービス契約をご利用でないお客様に対する無償アップグレードは、TAC 経由でご要求いただく必要があります。
さまざまな言語向けの各地の電話番号、説明、電子メール アドレスなどの、この他の TAC の連絡先情報については、 http://www.cisco.com/en/US/support/tsd_cisco_worldwide_contacts.html を参照してください。
本アドバイザリは無保証のものとしてご提供しており、いかなる種類の保証を示唆するものでもありません。本アドバイザリの情報およびリンクの使用に関する責任の一切はそれらの使用者にあるものとします。またシスコシステムズはいつでも本ドキュメントの変更や更新を実施する権利を有します。
後述する情報配信の URL を省略し、本アドバイザリの記述内容に関して、単独の転載や意訳を実施した場合には、事実誤認ないし重要な情報の欠落を含む統制不可能な情報の伝搬が行われる可能性があります。
本アドバイザリは、次のシスコのワールドワイド Web サイト上に掲載されます。
http://www.cisco.com/warp/public/707/cisco-sa-20100922-bundle.shtml
ワールドワイド Web 以外にも、次の電子メールおよび Usenet ニュースの受信者向けに、この通知のテキスト版が Cisco PSIRT PGP キーによるクリア署名つきで投稿されています。
このアドバイザリに関する今後の更新は、いかなるものもシスコのワールドワイド Web サイトに掲載される予定です。 しかしながら、前述のメーリング リストもしくはニュースグループに対し 積極的に配信されるとは限りません。この問題に関心があるお客様は上記 URL にて最新情報を ご確認いただくことをお勧めいたします。
Revision 1.0 |
2010-September-22 |
Initial public release. |
シスコ製品におけるセキュリティの脆弱性の報告、セキュリティ事故に関する支援、およびシスコからセキュリティ情報を入手するための登録方法について詳しく知るには、シスコ ワールドワイド Web サイトの http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html にアクセスしてください。このページには、シスコのセキュリティ通知に関してメディアが問い合わせる際の指示が掲載されています。すべてのシスコ セキュリティ アドバイザリは http://www.cisco.com/go/psirt/ で確認することができます。