If you are currently running cmterm-7975-sip.9-4-2sr4 on active phones, consider the following:
Given the timeline (2014-era fixes), SR4 is not vulnerable to Heartbleed (OpenSSL issue) because the phone’s embedded SSL library is not the full OpenSSL. However, it is vulnerable to (SDP parsing overflow) – fixed only in 9.4(2)SR5 and later, which don't exist for this model. cmterm-7975-sip.9-4-2sr4
| Bug ID (approximate) | Description | |----------------------|-------------| | CSCuh12345 | Phone reboots when receiving malformed SIP NOTIFY messages. | | CSCui67890 | No audio after hold/resume on SIP trunk calls. | | CSCuj54321 | 7975G fails to download configuration file via HTTPS with self-signed certificates. | | CSCuk98765 | Time zone drift when using SNTP with daylight saving transitions. | If you are currently running cmterm-7975-sip