Plantronics + Polycom. Now together as Poly Logo

OpenSSL vulnerability on Polycom products (08-04-14)

Advisor

OpenSSL vulnerability on Polycom products (08-04-14)

As of the 08/04/14 a major security flaw was found in OpenSSL in these versions; I would like to know which products are affected and when a fix will be released 

 

Systems Affected

  • OpenSSL 1.0.1 through 1.0.1f
  • OpenSSL 1.0.2-beta

http://www.us-cert.gov/ncas/alerts/TA14-098A

 

We run a series of VBPs and all of these are affected as they run OpenSSL 1.0.1c. We also have a number of other externally facing products, how about those?

Message 1 of 3
2 REPLIES 2
Highlighted
Polycom Employee & Community Manager

Re: OpenSSL vulnerability on Polycom products (08-04-14)

Hello Tifosa,

welcome to the Polycom Community.

Polycom is currently working on an official document that should shortly appear in our Security Center => here <=

Please ensure to provide some feedback if this reply has helped you so other users can profit from your experience.

Best Regards

Steffen Baier

Polycom Global Services




<======== Signature / Disclaimer ========>
Please be aware:For questions about the type of support to expect please check here

Please also ensure you always check the VoIP , Video Endpoint , Skype for Business , PSTN or RPM FAQ's

Please remember, if you see a post that helped you , and it answers your question, please mark it as an "Accept as Solution".

The title Polycom Employee & Community Manager is an automatic setting within the community and any forum reply or post is based upon my personal experience and does not reflect the opinion or view of my employer.
Poly employee participation within this community is not mandatory and any post or FAQ article provided by myself is done either during my working hours or outside working hours, in my private time, and maybe answered on weekends, bank holidays or personal holidays.
Tags (1)
Message 2 of 3
Advisor

Re: OpenSSL vulnerability on Polycom products (08-04-14)

Thanks Steffen.

 

I actually receieved a copy of that PDF this morning from our technical consolutant, which was extremely helpful. My comment on here was mainly to alert other customers about the bug and see if anyone had any idea on a potential patch date for the services

Message 3 of 3