Sophos UTM 9.503-3 released

Martin 24/08/2017

Sophos has released 9.503-3 today, you can download it here:

ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.502004-503003.tgz.gpg

Release notes:

Up2Date 9.503003 package description:

Remarks:
System will be rebooted
Configuration will be upgraded
Connected REDs will perform firmware upgrade
Connected Wifi APs will perform firmware upgrade

News:
Maintenance Release

Bugfixes:
Fix [NUTM-7891]: [AWS] awslogsd.log is beeing flooded with logmessages
Fix [NUTM-3196]: [Access & Identity] Overlapping backend user prefetches may not be executed
Fix [NUTM-7943]: [Basesystem] Ntpd permanently restarting on slave node
Fix [NUTM-8130]: [Basesystem] Linux vulnerability ‘The Stack Clash’
Fix [NUTM-8442]: [Basesystem] Network Monitor heavily logs “Writing static route to” in fallback log
Fix [NUTM-8167]: [Configuration Management] Stored XSS in UTM
Fix [NUTM-8229]: [Configuration Management] Expiring certificate check still send notifications even after CA is regenerated
Fix [NUTM-8300]: [Configuration Management] Expiring certificate check error fails for incomplete date in certificate
Fix [NUTM-8431]: [Configuration Management] Privilege escalation via insecure directory permissions
Fix [NUTM-8160]: [Email] \N in Password of bind request causes account log out
Fix [NUTM-8173]: [Email] UTM fails to apply DKIM signature to outbound mail with reason RC -102
Fix [NUTM-8339]: [Email] Avira scanner in single or dual scan still results in SMTP proxy AV scanner unreachable errors on 9.414/9.501
Fix [NUTM-8364]: [Email] S/MIME encryption – automatic certificate extraction causing high load
Fix [NUTM-8464]: [Email] worker_do_get_file req content parsing error or missing parameters when mime header “From” in blank
Fix [NUTM-8455]: [Hardware] Fix hardware detection for SG230nc
Fix [NUTM-6981]: [Network] No multicast packets visible on bridge with 10 Gbit interfaces
Fix [NUTM-7187]: [Network] Prefix Delegation does not work correctly during a PPPoE reconnect
Fix [NUTM-7502]: [Network] Wireless client hostname not displayed/updated
Fix [NUTM-7749]: [Network] Filter list with hosts didn’t work in BGP and should not be possible to configure
Fix [NUTM-7754]: [Network] WAF permanently restarts on slave node
Fix [NUTM-8556]: [Network] SNMP – Error allocating more space for arpcache
Fix [NUTM-8017]: [REST API] REST API not returning expected objects from API Explorer
Fix [NUTM-8137]: [WAF] URL hardening prevents login to succeed as side effect of “Redirect to requested URL” feature
Fix [NUTM-8174]: [WAF] Increase LimitRequestLine
Fix [NUTM-8169]: [WebAdmin] Certain WebAdmin search fields not usable after upgrade to 9.414/9.5
Fix [NUTM-5797]: [Web] Winbindd: Exceeding 16000 client connections
Fix [NUTM-7070]: [Web] In Advanced Protection statistics, email count number for “Awaiting result” displayed in web field
Fix [NUTM-8102]: [Web] Standard SSO AD issue after updating to 9.5 – IE/Chrome failing/slow to load sites
Fix [NUTM-8191]: [Web] SSL exception matched for a specific website but didn’t work
Fix [NUTM-8352]: [Web] Add patch for CVE-2017-11103 “Orpheus’ Lyre”
Fix [NUTM-8353]: [Web] HTTP proxy AD-SSO authentication failing on 9.502 with more than 5,000 users or groups in AD
Fix [NUTM-8387]: [Web] UTM registering all of it’s IPs in DNS when joining a domain
Fix [NUTM-8105]: [Wireless] Wireless network connected issue with Bridge to AP LAN

RPM packages contained:
glibc-2.11.3-17.109.1.12.g8c0d564.rb1.i686.rpm
glibc-64-2.11.3-17.109.1.12.g8c0d564.rb1.x86_64.rpm
glibc-locale-2.11.3-17.109.1.12.g8c0d564.rb1.i686.rpm
libconan-3.4.0.2281-0.264084288.g0647d0b.rb3.i686.rpm
libgcc_s1-5.3.1+r233831-10.1.1926.ga75bcd8.rb5.i686.rpm
libgomp1-5.3.1+r233831-10.1.1926.ga75bcd8.rb5.i686.rpm
libstdc++6-5.3.1+r233831-10.1.1926.ga75bcd8.rb5.i686.rpm
aws-cfn-bootstrap-1.4-8.3.amzn1.0.265211550.g12254b3.rb4.noarch.rpm
jq-1.5-0.265809832.g243e20a.rb4.i686.rpm
perf-tools-3.12.74-0.265397234.g263c982.rb9.i686.rpm
poe-tools-1.1.0.B4-6.g579f7ba.rb4.i686.rpm
python-PyYAML-3.12-1.0.265895455.g131a3d7.rb3.i686.rpm
python-argparse-1.4.0-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-awscli-1.11.36-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-awscli-cwlogs-1.4.0-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-botocore-1.4.93-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-colorama-0.3.7-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-dateutil-2.6.0-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-distribute-0.6.35-1.1.0.265284374.g834b879.rb5.i686.rpm
python-docutils-0.13.1-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-futures-3.0.5-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-jmespath-0.9.0-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-lockfile-0.9.1-7.1.4.0.265284374.g834b879.rb5.i686.rpm
python-ordereddict-1.1-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-pyasn1-0.1.9-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-pystache-0.5.2-1.5.0.265284374.g834b879.rb5.i686.rpm
python-python-daemon-1.5.5-8.1.2.0.265284374.g834b879.rb5.i686.rpm
python-rsa-3.4.2-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-s3transfer-0.1.10-1.0.265895455.g131a3d7.rb3.noarch.rpm
python-simplejson-3.3.0-1.0.265895455.g131a3d7.rb3.i686.rpm
python-six-1.10.0-1.0.265895455.g131a3d7.rb3.noarch.rpm
red-firmware2-5118-0.266497291.g06da22e.rb4.noarch.rpm
red15-firmware-5118-0.266497377.gf66d87f.rb4.noarch.rpm
rubygem-addressable-2.5.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-airbrake-5.7.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-airbrake-ruby-1.7.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-aws-sdk-1.66.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-aws-sdk-v1-1.66.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-blankslate-2.1.2.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-builder-3.2.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-celluloid-0.17.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-celluloid-essentials-0.20.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-celluloid-extras-0.20.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-celluloid-fsm-0.20.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-celluloid-pool-0.20.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-celluloid-supervision-0.20.6-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-chef-12.21.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-chef-config-12.21.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-chef-zero-5.3.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-coderay-1.1.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-crack-0.4.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-diff-lcs-1.2.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-docile-1.1.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-docker-api-1.33.6-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-erubis-2.7.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-excon-0.57.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-faraday-0.12.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-ffi-1.9.14-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-ffi-yajl-2.3.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-fuzzyurl-0.9.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-gssapi-1.2.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-gyoku-1.3.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-hashdiff-0.3.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-hashie-3.5.6-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-highline-1.7.8-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-hitimes-1.2.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-htmlentities-4.3.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-httpclient-2.8.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-iniparse-1.4.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-inspec-1.31.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-ipaddress-0.8.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-json-1.8.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-libyajl2-1.2.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-little-plugger-1.1.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-logging-2.1.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-method_source-0.8.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-mini_portile2-2.0.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-mixlib-archive-0.4.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-mixlib-authentication-1.4.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-mixlib-cli-1.7.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-mixlib-config-2.2.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-mixlib-log-1.7.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-mixlib-shellout-2.2.7-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-multi_json-1.12.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-multipart-post-2.0.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-net-scp-1.2.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-net-sftp-2.1.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-net-ssh-4.1.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-net-ssh-gateway-2.0.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-net-ssh-multi-1.2.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-net-telnet-0.1.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-nokogiri-1.6.7.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-nori-2.6.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-ohai-8.24.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-parallel-1.11.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-parslet-1.5.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-pg-0.19.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-pidfile-0.3.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-plist-3.3.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-proxifier-1.0.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-pry-0.10.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-public_suffix-2.0.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rack-2.0.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rainbow-2.2.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-retries-0.0.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rspec-3.5.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rspec-core-3.5.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rspec-expectations-3.5.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rspec-its-1.2.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rspec-mocks-3.5.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rspec-support-3.5.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rspec_junit_formatter-0.2.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rubyntlm-0.6.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-rubyzip-1.2.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-safe_yaml-1.0.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-semverse-2.0.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-sequel-4.42.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-serverspec-2.39.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-sfl-2.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-simplecov-0.12.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-simplecov-html-0.10.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-slop-3.6.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-sophos-iaas-1.0.0-1.0.266587793.gb09688e.rb3.i686.rpm
rubygem-specinfra-2.69.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-sslshake-1.2.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-syslog-logger-1.6.8-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-systemu-2.6.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-thor-0.19.4-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-timers-4.1.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-toml-0.1.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-train-0.25.0-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-uuidtools-2.1.5-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-webmock-2.3.2-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-winrm-2.2.3-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-winrm-fs-1.0.1-0.265972153.gbb50f8e.rb3.i686.rpm
rubygem-wmi-lite-1.0.0-0.265972153.gbb50f8e.rb3.i686.rpm
samba-4.6.5-2.g3b9fc9c.rb2.i686.rpm
udhcp-0.9.8-2.21.0.264845701.g9988c34.rb5.i686.rpm
ep-reporting-9.50-48.ga42c3a8.rb5.i686.rpm
ep-reporting-resources-9.50-48.ga42c3a8.rb5.i686.rpm
ep-aua-9.50-61.g7c98987.rb5.i686.rpm
ep-awed-9.50-50.g6879d4e.rb2.i686.rpm
ep-branding-ASG-afg-9.50-73.gaea952a.rb1.noarch.rpm
ep-branding-ASG-ang-9.50-73.gaea952a.rb1.noarch.rpm
ep-branding-ASG-asg-9.50-73.gaea952a.rb1.noarch.rpm
ep-branding-ASG-atg-9.50-73.gaea952a.rb1.noarch.rpm
ep-branding-ASG-aug-9.50-73.gaea952a.rb1.noarch.rpm
ep-confd-9.50-1692.gca24593.rb7.i686.rpm
ep-cssd-9.50-43.gf6e28da.rb3.i686.rpm
ep-ha-aws-9.50-506.gb09688e.rb3.noarch.rpm
ep-ipv6-watchdog-9.50-9.g7c8a35b.rb3.i686.rpm
ep-mdw-9.50-930.g8999158.rb8.i686.rpm
ep-restd-9.50-0.266328454.gea5400f.rb4.i686.rpm
ep-samba-9.50-13.g8c7d893.rb3.noarch.rpm
ep-tools-9.50-17.g57bf82f.rb4.i686.rpm
ep-utm-watchdog-9.50-76.g581dd51.rb3.i686.rpm
ep-webadmin-9.50-1268.gde7e9fe.rb8.i686.rpm
ep-cloud-ec2-9.50-158.g4da3528.rb3.i686.rpm
ep-chroot-httpd-9.50-29.g52301c8.rb5.noarch.rpm
ep-chroot-ntp-9.50-11.g4e04067.rb2.noarch.rpm
ep-chroot-smtp-9.50-123.gf4a93d4.rb3.i686.rpm
dhcp-chroot-client-4.3.5-0.gf42b497.rb3.i686.rpm
dhcp-chroot-server-4.3.5-0.gf42b497.rb3.i686.rpm
ep-httpproxy-9.50-428.g8d140e3.rb3.i686.rpm
net-snmp-chroot-5.7.3-725.g37a7cd7.rb2.i686.rpm
kernel-smp-3.12.74-0.265397234.g263c982.rb9.i686.rpm
kernel-smp64-3.12.74-0.265397234.g263c982.rb6.x86_64.rpm
ep-release-9.503-3.noarch.rpm

About the Author

Leave a Reply