PowerHA System Mirror is not affected by the SSL v3.0 vulnerability (CVE-2014-3566) Flash (Alert)
Michael E Herrera
Advanced Technical Sales
Abstract: PowerHA System Mirror is not vulnerable to the SSL v3.0 attack that has been referred to as Padding Oracle On Downgrade Legacy Encryption ("POODLE").
PowerHA System Mirror does not enable SSL v3.0. Hence it is not impacted by the SSL v3.0 vulnerability.
In particular, PowerHA System Mirror in all editions and all platforms is NOT vulnerable to the SSL v3.0 vulnerability (CVE-2014-3566).
IBM recommends that you review your entire environment to identify areas that enable the SSLv3 protocol and take appropriate mitigation and remediation actions. The most immediate mitigation action that can be taken is disabling SSLv3.
IBM Power Systems
PowerHA SystemMirror AIX POODLE SSL v3.0
The Techdocs Library
Is this your first visit to Techdocs (the Technical Sales Library)?