Jump to content
Welcome to our new Citrix community!

Is Netscaler 12.1 safe against this Linux vulnerability?


Recommended Posts

Dear Team,

 

We are running Netscaler 12.1 MPX appliances in our Citrix infrastructure. We have just been informed about a linux based vulnerability ( Linux Kernel TCP SACK Denial of Service Vulnerability)  by our security Team. Does it has any impact on Netscaler appliances?

 

Please check below articles for more information. any advise would be highly appreciated !!

https://www.dslreports.com/forum/r32433351-Microsoft-Security-Advisory-Notification-Issued-June-28-2019

https://nvd.nist.gov/vuln/detail/CVE-2019-11477


 

Link to comment
Share on other sites

Good morning,

 

I don't believe the NetScaler is affected by this, since it is (a modified) BSD kernel and not Linux under the hood.  According to the following post, there does appear to be a similar vulnerability that affects BSD, but that appears to be limited to BSD 12: https://www.kb.cert.org/vuls/id/905115/

 

You can verify your kernel version by running the following command:

 

root@ns2# uname -a
FreeBSD ns2 8.4-NETSCALER-12.1 FreeBSD 8.4-NETSCALER-12.1 #0: Tue May 22 05:55

  • Like 2
Link to comment
Share on other sites

  • 4 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...