From 9.2 onward, the ASA code was created to be primarily multi-core threaded which is why support was dropped on the single-core platforms. The ASA’s are single-core devices while the ASA-X’s are multi-core devices. Here is the excerpt from the page where listed the code with “high” and “critical” vulnerability fixes. Per platform recommendationsĪSA5505: 9.2(4.5) ASA 5505 cannot go beyond 9.2(4.5)ĪSA non-X models: 9.1(7) These ASAs cannot go beyond 9.1(7)ĪSA X models: These models should move to a new version depending on their current version. “High” security advisory released “ Multiple Vulnerabilities in OpenSSL” on January 29 th 2016. You are encouraged to confirm with Cisco TAC and evaluate based on your specific situation.Ĭisco ASA Code Upgrade and Recommended VersionsĬritical” security advisory released “ Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability” on February 10 h 2016. Please note that the recommendations made here are solely from my experience working with Cisco products and best judgement. The recommendation also takes consideration of the Cisco Security Advisory, any “high” and “critical” bugs and vulnerabilities shall be patched in the code versions recommended.
I created this document to track the latest, Cisco ASA code upgrade and recommended versions that are feasible for most environment. The answer varies based on your specific environment, ASA models and license level. People often ask what Cisco ASA code version one should be running on.
0 kommentar(er)
