Guest

Preview Tool

Cisco Bug: CSCvu37190 - CIAM: libidn 2.0.5

Last Modified

Jun 11, 2020

Products (1)

Known Affected Releases

unspecified

Description (partial)

We are using Hardened Ubuntu developed by Cloud 9 - Common Cloud Components built by STO-Engineering
Tried a stable version of Hardened Ubuntu OS 18.04 https://containers.cisco.com/repository/sto-ccc-cloud9/hardened_ubuntu?tab=tags 
It has same version of libidn.

Refer https://corona-staging.cisco.com/products/44663/releases/55145/security_awareness_report

Symptom:
This product includes Third-party Software that is affected by the
vulnerabilities identified by the following Common Vulnerability and
Exposures (CVE) IDs:

CVE-2019-12290 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12290
CVE-2019-18224 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18224

This bug was opened to address the potential impact on this product.

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.