Cisco delays March security patch after Japan disaster


Cisco delays March security patch after Japan disaster

Alex Scroxton

Following the 11 March earthquake, tsunami and subsequent nuclear crisis in Japan, Cisco has taken the step of abandoning scheduled plans to publish its IOS Security Advisories, scheduled for 23 March.

The vendor normally discloses security vulnerabilities within its router and switching software on the fourth Wednesday of the month in March and September.

However, in a statement released today, Cisco said that "based on recent events in Japan we are sensitive to the fact that customers globally are impacted directly or indirectly by these events and may not be able to respond effectively to the scheduled disclosure event".

Added Cisco: "This regional disaster has not affected the ability of Cisco to disclose vulnerability information.

"If we see evidence of active exploitation of a vulnerability that could lead to increased risk for Cisco customers, we will disclose appropriate information out of cycle."

Cisco said it would bundle this week's planned disclosure together with the next scheduled disclosure on 28 September.

Join the conversation Comment



    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.