Guest

Preview Tool

Cisco Bug: CSCvv89265 - CIAM: libxml 2.9.4 CVE-2017-7376 and others

Last Modified

Oct 16, 2020

Products (1)

  • Cisco MDS 9000 NX-OS and SAN-OS Software

Known Affected Releases

8.5(0)SK(0.182)

Description (partial)

Symptom:
This product includes Third-party Software that is affected by the
vulnerabilities identified by the following Common Vulnerability and
Exposures (CVE) IDs:

CVE-2016-1838 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1838
CVE-2016-4658 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4658
CVE-2016-5131 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5131
CVE-2016-9318 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9318
CVE-2017-15412 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15412
CVE-2017-16931 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16931
CVE-2017-16932 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16932
CVE-2017-18258 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18258
CVE-2017-5130 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5130
CVE-2017-7375 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7375
CVE-2017-7376 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7376
CVE-2017-8872 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8872
CVE-2017-9047 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9047
CVE-2017-9048 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9048
CVE-2017-9049 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9049
CVE-2017-9050 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9050
CVE-2018-14404 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14404
CVE-2019-19956 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19956
CVE-2020-24977 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24977

The affected third-party software component has been upgraded to a version that includes fixes for the vulnerability. Future versions of the product(s) will not be affected by this vulnerability.

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.