Data360 DQ+

 View Only
  • 1.  Vulnerable openssl package in Load Balancer container

    Posted 03-16-2022 11:49

    We have upgraded to 6.2 FP4, but OpenSSL 1.1.1 (CVE-2021-3449) vulnerability is still being reported for the Load Balancer container in all DQ+ environments.  Has this vulnerability been addressed and resolved in later fixpacks of 6.2?



  • 2.  RE: Vulnerable openssl package in Load Balancer container

    Employee
    Posted 03-16-2022 12:36

    Hi Josh,

    I recommend applying all available patches; There have been security vulnerability fixes as recent as DQ+ Fixpack 7. Once everything is applied, please let me know if the return you describe persists.

    Matthew Kennedy