Cisco Cisco IOS Software Release 12.2(35)SE Release Notes
15
Release Notes for the Cisco Catalyst Blade Switch 3030, Cisco IOS Release 12.2(25)SEE2 and Later
OL-11307-02
Resolved Caveats
Resolved Caveats in Cisco IOS Release 12.2(25)SEE4
These caveats were resolved in Cisco IOS Release 12.2(25)SEE4:
•
CSCsf04754
Multiple Cisco products contain either of two authentication vulnerabilities in the Simple Network
Management Protocol version 3 (SNMPv3) feature. These vulnerabilities can be exploited when
processing a malformed SNMPv3 message. These vulnerabilities could allow the disclosure of
network information or may enable an attacker to perform configuration changes to vulnerable
devices. The SNMP server is an optional service that is disabled by default. Only SNMPv3 is
impacted by these vulnerabilities. Workarounds are available for mitigating the impact of the
vulnerabilities described in this document.
Management Protocol version 3 (SNMPv3) feature. These vulnerabilities can be exploited when
processing a malformed SNMPv3 message. These vulnerabilities could allow the disclosure of
network information or may enable an attacker to perform configuration changes to vulnerable
devices. The SNMP server is an optional service that is disabled by default. Only SNMPv3 is
impacted by these vulnerabilities. Workarounds are available for mitigating the impact of the
vulnerabilities described in this document.
The United States Computer Emergency Response Team (US-CERT) has assigned Vulnerability
Note VU#878044 to these vulnerabilities.
Note VU#878044 to these vulnerabilities.
Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-0960 has been assigned to
these vulnerabilities.
these vulnerabilities.
This advisory will be posted at
•
CSCsj39211
The switch no longer incorrectly overwrites the class of service (CoS) packets of internally
generated Multicast Listener Discovery (MLD) queries and other control packets.
generated Multicast Listener Discovery (MLD) queries and other control packets.
•
CSCsh89429
The switch no longer reloads when the write core privileged EXEC command is entered when testing
a core dump configuration and FTP is selected as the file transfer protocol.
a core dump configuration and FTP is selected as the file transfer protocol.
Resolved Caveats in Cisco IOS Release 12.2(25)SEE2
These caveats were resolved in Cisco IOS Release 12.2(25)SEE2:
•
CSCef73145
The Mean Opinion Score (MOS) reported by an IP SLA jitter probe is now correct.
•
CSCei80087
It is no longer necessary to detach and then reapply a hierarchical policy map to force changes to a
VLAN level class-map to take effect.
VLAN level class-map to take effect.
•
CSCsb79198
A switch no longer fails IEEE 802.1x authentication if it downloads an access control list (ACL)
that has more than 20 ACL access control entries (ACEs) from a RADIUS server.
that has more than 20 ACL access control entries (ACEs) from a RADIUS server.
•
CSCsb81283
MAC notifications now work properly when port security is configured.
•
CSCsb82422
The switch now forwards an IEEE802.1x request that has null credentials.
•
CSCsc13467
A switch no longer fails or displays illegal memory access messages during the SNMP Timer
process.
process.