Solutions

SSL 3.0 Vulnerability - Poodle - SDA



ID:    S140815
Published:    20 October 2014
Updated:    24 April 2015

Operating System(s)

  • AIX
  • HPUX
  • Linux
  • Solaris
  • Unix
  • Windows 2003
  • Windows 2003 R2
  • Windows 2008
  • Windows 2008 R2
  • Windows 2012
 

Description

A new security vulnerability called POODLE (Padding Oracle On Downgraded Legacy Encryption) is currently in the news. This is the result of a flaw in the SSL 3.0 protocol and the specific attack and may allow a man-in-the-middle to intercept parts of SSL encrypted communications. This has the potential to affect any SSL encrypted communications and thus requests to communicate with Serena Deployment Automation (SDA) are affected. For customers to make sure their installations are secure there are mitigation steps they can take to secure the SDA Server and Serena Common Tomcat .

Resolution

Use the document attached to mitigate the effects of this problem.

Applies To

Release Automation

Attachment

File NameFile SizeDownLoad
Mitigating POODLE in Serena Deployment Automation.doc 40K HTTP

Rate this Solution

Find Answers

Type a question or describe what you are looking for below

My Recent Searches

Welcome kb sso

Additional Assistance

  • Submit a Case Online
  • FAQs