Security Mailing List Updates

Question

I have been subscribed to the F5 security mailing list for some time now (security-subscribe@lists.f5.com) but only ever seem to get updates regarding ASM attack signatures and not any vulnerabilities.&nbsp;
One recent example is SOL15220: iControl vulnerability CVE-2014-2928 which was received via AUSCERT but nothing from the F5 security mailing list.&nbsp;
Does anyone else experience the same thing for monitoring F5 vulnerabilities?&nbsp;

james_thomson · Answer

on 4/9/14, I got one for the OpenSSL vulnerability. Did you get that one?
I'm not sure why that one that you post there wouldn't have been sent out as a security.&nbsp;

fred_a_30606 · Answer

Yes, you're right James I did get that one for Heartbleed
Subject: OpenSSL vulnerability CVE-2014-0160 (VU720951) aka Heartbleed&nbsp;

boneyard · Answer

same here, mainly ASM updates, heartbleed was pretty much the exception recently.&nbsp;

fred_a_30606 · Answer

I logged Service Request : C1576287 for this and will contact our account manager too.  It seems logical that the security mailing list should be sending notices regarding F5 vulnerabilities.&nbsp;
Thanks for your responses and I will let you know what happens.&nbsp;

jason_cohen_417 · Answer

Has there been any progress on this?  I'd be interested in getting updates from this list anytime there is new information about and F5 related vulnerability.

Forum Discussion

Security Mailing List Updates

6 Replies

Recent Discussions

F5 terminal - help to run commands - disk space full

vulnerabilities-CVE-2020-16150 & CVE-2013-0169

google autenticator broken barcode

Error while running ansible

ASM instance creation

Related Content

Auditing Security Policy Updates

Using ChatGPT for security and introduction of AI security

HTTP Multipart and Security Implications

Minimizing Security Complexity: Managing Distributed WAF Policies

Adaptive Apps: Replicate & deploy WAF application security policies across F5's security portfolio