The Channel logo

News

By | Richard Thurston 27th March 2008 12:25

Cisco unleashes IOS patches

Fixes five 'moderately critical' flaws

Cisco has kicked off its biannual patching frenzy by revealing five vulnerabilities to IOS, the operating system on which its routers run.

The vulnerabilities are, according to security researchers Secunia, "moderately critical". They could lead to a denial of service attack against the organisation concerned, or manipulation of data.

Cisco says customers should apply the software updates it has made available.

The vulns were revealed yesterday in Cisco's first biannual IOS security advisory. It has moved to a regular six-monthly cycle to make it more predictable for customers.

Microsoft and Oracle already produce regular patches, on a monthly and quarterly basis respectively.

Cisco says it will release IOS security advisories out-of-cycle if a serious vulnerability is publicly disclosed, or if bugs become at risk of active exploitation. All the company's other product advisories, including those for its IP telephony equipment, will be released as and when necessary.

The next scheduled IOS advisory is due in the fourth week of September. ®

alert Send corrections

Opinion

Woman cuddles 'sly-looking' Fennec fox. Photo by Shutterstock
Cartoon of employee asking wky boss makes hium wear suspenders (while pincer through open trapdoor remains poised above his head) illustration by Cartoon resource for Shutterstock

Frank Jennings

It's not like my boss painstakingly nurtured the contacts, right?

Features

Girl and computer, photo via Shutterstock
Middle-class terror of engineering also part of problem
Nerd fail photo via Shutterstock
Shouting match
Single market vs. rest of the world