The AlienVault product team has released a hotfix (v5.4.2) to address a vulnerability discovered in the Linux kernel in USM Appliance. Recently, a security researcher at AlienVault identified that the Linux kernel in USM Appliance was vulnerable to CVE-2017-11176. After thorough analysis, it was determined that the severity of the vulnerability warranted a hotfix update.
Please see the security advisory for additional details about the package updates included in this release.
What We Have Done
We have identified and resolved this issue by updating the Debian kernel and some associated packages. An update is now available on the AlienVault update server. Applying the update will patch your system(s) and eliminate the vulnerability.
What You Should Do
All USM customers should upgrade. All previous versions of USM Appliance are vulnerable.
How to Get Help
If you have any questions or experience any issues resulting from this update, please reach out to our Support Team ([email protected]).