https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/defender-with-a-vulnerability-in-openssl-libs/m-p/375703#M345 <P>Defender contains a vulnerability openssl-libs version 1.0.2k-19.el7. The fix is in&nbsp;<SPAN>1.0.2k-21.el7_9.</SPAN></P><P>Do you advise to upgrade manually all Defenders or an upgrade will be available in Prisma?</P><P>&nbsp;</P> Mon, 21 Dec 2020 23:06:11 GMT PJablonski 2020-12-21T23:06:11Z https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/defender-with-a-vulnerability-in-openssl-libs/m-p/375703#M345 <P>Defender contains a vulnerability openssl-libs version 1.0.2k-19.el7. The fix is in&nbsp;<SPAN>1.0.2k-21.el7_9.</SPAN></P><P>Do you advise to upgrade manually all Defenders or an upgrade will be available in Prisma?</P><P>&nbsp;</P> Mon, 21 Dec 2020 23:06:11 GMT https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/defender-with-a-vulnerability-in-openssl-libs/m-p/375703#M345 PJablonski 2020-12-21T23:06:11Z https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/defender-with-a-vulnerability-in-openssl-libs/m-p/376549#M346 <P>Hi,</P><P>&nbsp;</P><P>I think it would be appropriate to patch vulnerabilities like this without waiting for a hotfix, however, remember to always have a dev/sandbox to test in with a good backup. Lastly, always upgrade to the fixed version exactly to avoid false positives.</P> Tue, 29 Dec 2020 11:53:05 GMT https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/defender-with-a-vulnerability-in-openssl-libs/m-p/376549#M346 PBowden 2020-12-29T11:53:05Z