| Home | Current Systems | Former STK Products | EOL Systems | Components | General Info | Search | Feedback |
| Oracle System Handbook - ISO 7.0 May 2018 Internal/Partner Edition | ||
|
|
||
 |
||||||||||||||||
Solution Type Problem Resolution Sure Solution 1937698.1 : T10000C/T10000D - CVE-2014-3566, Poodle Vulnerability
In this Document
Applies to:StorageTek T10000D Tape Drive - Version All Versions and laterStorageTek T10000C Tape Drive - Version Not Applicable and later Information in this document applies to any platform. The current release, 4.08.105, and prior releases of the T10000D tape drive firmware have support for SSL v3.0 and TLS v1.0 enabled. SSL v3.0 can not be disabled in T10000D by the user. However, SSL v3.0 will not be used by the drive. The T10000D only uses TLS 1.0 to communicate with the Oracle Key Manager (OKM). The OKM does not support SSL v3.0. Since OKM does not support SSL v3.0, the SSL connection between the drive and the OKM can never fallback to using SSL v3.0. SymptomsA critical security bug has been reported publicly against SSL v3.0 under CVE-2014-3566 and is sometimes called the Poodle Vulnerability. CauseSupport for SSL v3.0 and TLS v1.0 enabled. SolutionSSL v3.0 will be disabled in the upcoming 4.09.1xx release and future releases of the T10000D firmware. Code is targeted to release in Calender Q1 2015, late February. (Updated 13-Nov-2014) 3.62.108 release of the T10000C firmware has SSL v3.0 disabled. BUG 19842650 was opened against T10000D Attachments This solution has no attachment |
||||||||||||||||
|
||||||||||||||||