Palo Alto Networks Security Advisories - June 27, 2019

[icecream-guy]

Security Advisory PAN-SA-2019-0015 is for MineMeld

Palo Alto Networks has published three Security Advisories https://securityadvisories.paloaltonetworks.com/.

PAN-SA-2019-00013– Information about TCP SACK Panic Findings in PAN-OS
•   Severity = High
•   Fixed in PAN-OS 7.1.24, PAN-OS 8.0.19, PAN-OS 8.1.8-h5 and PAN-OS 9.0.2-h4
•   Affected Versions: PAN-OS 7.1.23 and earlier, PAN-OS 8.0.18 and earlier, PAN-OS 8.1.8-h4 and earlier and PAN-OS 9.0.2-h3 and earlier
•   CVE-2019-5599, CVE-2019-11477, CVE-2019-11478 and CVE-2019-11479

PAN-SA-2019-00014– Code Injection Vulnerability in Traps
•   Severity = Low
•   Fixed in Traps 5.0.6 and later
•   Affected Versions: Traps 5.0.5 and earlier, and all Traps 4.x releases
•   CVE-2019-1577

PAN-SA-2019-00015– Cross Site Scripting (XSS) in MineMeld
•   Severity = Low
•   Fixed in Open Source Community Supported MineMeld version 0.9.62
•   Affected Versions: Open Source Community Supported MineMeld version 0.9.61 and earlier
•   CVE-2019-1578
 
Details of the issues, affected versions, and any mitigation information can be found in the Security Advisories at https://securityadvisories.paloaltonetworks.com/

.

If you have questions, please contact support https://www.paloaltonetworks.com/company/contact-support

.

Regards
,
Product Security Incident Response Team

Palo Alto Networks