Cisco has released new security updates for the dangerous bug affecting its Adaptive Security Appliance software, after its engineers discovered new ways to attack it that weren’t addressed in the original patch.
This development means that even admins who installed a fixed version of ASA before Cisco disclosed the bug in last week’s advisory will need to update again. One engineer has pointed out that some fixed versions of ASA were released over two months before the patch.