McAfee just sent out the following SNS a few minutes ago:
McAfee is aware of the Heartbleed Vulnerability (CVE-2014-0160).This is a vulnerability in OpenSSL that could allow an attacker to gain accessto system memory (in 64K chunks) which potentially could contain sensitiveinformation or communications.
McAfee is investigatingaffected products and will be provide additional information via SNS today.
To subscribe to their SNS service: https://sns.snssecure.mcafee.com
According to Service Bulletin SB10071 in the McAfee Knowledge Center, the only product they have identified to be vulnerable is SIEM.
One of our customers actually raised a ticket against Firewall Enterprise and has been told Firewall Enterprise is affected, but only 8.3.2.
As this information was passed to me by another party and the customer in question is not running 8.3.2, I don't know if a patch or hotfix has been made available.
Message was edited by: PhilM on 10/04/14 15:22:29 ISTMessage was edited by: PhilM on 10/04/14 15:22:43 IST