Sophos UTM: UP2DATE 9.602-3 released

UPDATE: 7/5-2019:
When installing this update, and you have used the commands to disable the new unified firmware, then it will be reverted again, so unified firmware is enabled and the NEW 9.602 unified firmware will be applied to your RED devices.
Have installed it at a problematic site, and so far, the REDs are stable, with unified firmware enabled!

Sophos has released 9.602-3, fixing some problematic bugs, here are the release notes:

Up2Date 9.602003 package description:

Remarks:
System will be rebooted
Configuration will be upgraded
Connected REDs will perform firmware upgrade

News:
Maintenance Release

Bugfixes:
Fix [NUTM-9877]: [Access & Identity] Configurable RADIUS timeout for L2TP over IPsec
Fix [NUTM-10728]: [Access & Identity] Race condition on configuration change of RED device
Fix [NUTM-10190]: [Basesystem] CVE-2018-15473: OpenSSH username enumeration
Fix [NUTM-10362]: [Email] MIME type detection doesn’t work as expected – header Content-Type always considered
Fix [NUTM-10480]: [Email] Mail Based XSS in Sophos UTM 9
Fix [NUTM-10484]: [Email] POP3 Proxy stops working sometimes
Fix [NUTM-10545]: [Email] Update SPX placeholder description
Fix [NUTM-10521]: [Logging] /tmp partition getting full when using livelog
Fix [NUTM-10291]: [Network] DNS Host object not updated/unresolved
Fix [NUTM-10460]: [Network] GeoIP dropping traffic from allowed region
Fix [NUTM-10537]: [Network] Additional IP address on a bridge interface exist in back-end even after deleting it
Fix [NUTM-10536]: [RED] Wifi traffic on the internal RED15w AP is always routed through the RED tunnel
Fix [NUTM-10594]: [RED] RED50 disconnects randomly
Fix [NUTM-10595]: [Sandstorm] Sandbox Activity Tab not accessible due to license error
Fix [NUTM-10852]: [Sandstorm] Sandboxd complaining on missing column in database/sqlite
Fix [NUTM-10626]: [WAF] Let’s Encrypt certificate renewal fails because of failing terms of service check
Fix [NUTM-10644]: [WAF] mod_session_cookie does not respect expiry time (CVE-2018-17199)
Fix [NUTM-10661]: [WAF] SSL redirect broken for wildcard certificates
Fix [NUTM-10322]: [Web] Proxy crash with coredump on UTM 9.508
Fix [NUTM-10633]: [Web] New web templates for content warn does not work in 9.6
Fix [NUTM-10657]: [Web] httpproxy uses up all CPUs in peak hours, resulting in slow browsing
Fix [NUTM-10668]: [Web] Quota relevant web page are accessible when using AD SSO
Fix [NUTM-10758]: [Web] Application Control – Skiplist not working for destination IP
Fix [NUTM-10546]: [Wireless] Updating to 9.6 GA with REDw devices causes corrupt payload and AP becomes inactive

RPM packages contained:
libopenssl1_0_0-1.0.2j-4.1.0.315434366.gda1fdce2.rb6.i686.rpm
libopenssl1_0_0_httpproxy-1.0.2j-4.1.0.315434366.gda1fdce2.rb6.i686.rpm
krb5-1.6.3-133.49.68.1.1.g32000da.rb4.i686.rpm
krb5-client-1.6.3-133.49.68.1.1.g32000da.rb4.i686.rpm
modauthnzaua-9.60-403.gcb78b67.rb34.i686.rpm
modauthzblacklist-9.60-385.g1471b81.rb33.i686.rpm
modavscan-9.60-422.g0c80dbc.rb29.i686.rpm
modcookie-9.60-0.g8f24856.rb34.i686.rpm
modcustomblockpage-9.60-412.gbe16bc0.rb29.i686.rpm
modfirehose-2.5_SVNr1309567-14.g4ab2622.rb34.i686.rpm
modformhardening-9.60-385.g1471b81.rb39.i686.rpm
modpcap-9.60-0.142961807.g994d6f0.rb34.i686.rpm
modproxymsrpc-0.5-121.gc7f8565.rb42.i686.rpm
modproxyprotocol-0.1-30.gac71dfd.rb34.i686.rpm
modreverseauth-9.60-95.g852e9e5.rb36.i686.rpm
modsecurity2-2.9.1-266.g649c52a.rb38.i686.rpm
modsecurity2_beta-2.9.0-460.g62b8fdb.rb38.i686.rpm
modsessionserver-9.60-0.247653793.g4179dcf.rb37.i686.rpm
modurlhardening-9.60-385.g1471b81.rb37.i686.rpm
modwafexceptions-9.60-0.237979534.g7d2ba1b.rb37.i686.rpm
modwhatkilledus-2.01-0.258193062.g46092ac.rb38.i686.rpm
navl-tools-4.6.0.50-0.316899012.g8b86fac.rb4.i686.rpm
openssh-6.6p1-36.15.0.g3e4df096.rb8.i686.rpm
openssl-1.0.2j-4.1.0.315434366.gda1fdce2.rb6.i686.rpm
red-firmware2-5211-0.319020363.g97048eeb4.rb2.noarch.rpm
red-unified-firmwares-9600-0.320161041.g6a7d182.rb2.i586.rpm
red15-firmware-5211-0.319020335.g5c1d61812.rb2.noarch.rpm
rubygem-addressable-2.5.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-airbrake-5.7.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-airbrake-ruby-1.7.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-aws-sdk-v1-1.67.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-blankslate-2.1.2.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-builder-3.2.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-celluloid-0.17.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-celluloid-essentials-0.20.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-celluloid-extras-0.20.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-celluloid-fsm-0.20.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-celluloid-pool-0.20.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-celluloid-supervision-0.20.6-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-chef-12.21.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-chef-config-12.21.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-chef-zero-5.3.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-coderay-1.1.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-crack-0.4.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-diff-lcs-1.2.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-docile-1.1.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-docker-api-1.33.6-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-erubis-2.7.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-excon-0.57.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-faraday-0.12.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-ffi-1.9.14-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-ffi-yajl-2.3.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-fuzzyurl-0.9.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-gssapi-1.2.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-gyoku-1.3.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-hashdiff-0.3.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-hashie-3.5.6-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-highline-1.7.8-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-hitimes-1.2.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-htmlentities-4.3.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-httpclient-2.8.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-iniparse-1.4.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-inspec-1.31.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-ipaddress-0.8.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-json-1.8.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-libyajl2-1.2.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-little-plugger-1.1.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-logging-2.1.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-method_source-0.8.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-mini_portile2-2.0.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-mixlib-archive-0.4.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-mixlib-authentication-1.4.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-mixlib-cli-1.7.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-mixlib-config-2.2.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-mixlib-log-1.7.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-mixlib-shellout-2.2.7-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-multi_json-1.12.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-multipart-post-2.0.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-net-scp-1.2.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-net-sftp-2.1.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-net-ssh-4.1.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-net-ssh-gateway-2.0.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-net-ssh-multi-1.2.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-net-telnet-0.1.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-nokogiri-1.6.7.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-nori-2.6.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-ohai-8.24.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-parallel-1.11.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-parslet-1.5.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-pg-0.19.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-pidfile-0.3.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-plist-3.3.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-proxifier-1.0.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-pry-0.10.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-public_suffix-2.0.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rack-2.0.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rainbow-2.2.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-retries-0.0.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rspec-3.5.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rspec-core-3.5.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rspec-expectations-3.5.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rspec-its-1.2.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rspec-mocks-3.5.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rspec-support-3.5.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rspec_junit_formatter-0.2.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rubyntlm-0.6.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-rubyzip-1.2.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-safe_yaml-1.0.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-semverse-2.0.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-sequel-4.43.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-serverspec-2.39.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-sfl-2.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-simplecov-0.12.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-simplecov-html-0.10.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-slop-3.6.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-sophos-iaas-1.0.0-1.0.317521299.g968dd6da.rb3.i686.rpm
rubygem-specinfra-2.69.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-sslshake-1.2.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-syslog-logger-1.6.8-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-systemu-2.6.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-thor-0.19.4-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-timers-4.1.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-toml-0.1.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-train-0.25.0-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-uuidtools-2.1.5-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-vcr-3.0.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-webmock-2.3.2-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-winrm-2.2.3-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-winrm-fs-1.0.1-0.317521299.g968dd6da.rb2.i686.rpm
rubygem-wmi-lite-1.0.0-0.317521299.g968dd6da.rb2.i686.rpm
ep-confd-9.60-1394.g835d306b2.i686.rpm
ep-confd-tools-9.60-1364.gd129d9cd7.rb15.i686.rpm
ep-ha-aws-9.60-262.g968dd6da.rb2.noarch.rpm
ep-init-9.60-33.g7905afa.rb2.noarch.rpm
ep-localization-afg-9.60-47.g76408d2.rb2.i686.rpm
ep-localization-ang-9.60-47.g76408d2.rb2.i686.rpm
ep-localization-asg-9.60-47.g76408d2.rb2.i686.rpm
ep-localization-atg-9.60-47.g76408d2.rb2.i686.rpm
ep-localization-aug-9.60-47.g76408d2.rb2.i686.rpm
ep-mdw-9.60-1124.g464bd824.rb7.i686.rpm
ep-red-9.60-31.g2124b05.rb2.i686.rpm
ep-restd-9.60-172.gbce82b8.rb3.i686.rpm
ep-sandboxd-9.60-85.g074e41f.rb2.i686.rpm
ep-tools-9.60-41.gb44eb11.rb4.i686.rpm
ep-tools-cpld-9.60-41.gb44eb11.rb4.i686.rpm
ep-up2date-9.60-25.g85f07d4.rb6.i686.rpm
ep-up2date-downloader-9.60-25.g85f07d4.rb6.i686.rpm
ep-up2date-pattern-install-9.60-25.g85f07d4.rb6.i686.rpm
ep-up2date-system-install-9.60-25.g85f07d4.rb6.i686.rpm
ep-webadmin-9.60-1135.g4f430a0a6.rb9.i686.rpm
ep-webadmin-contentmanager-9.60-55.g816da29.rb3.i686.rpm
ep-chroot-smtp-9.60-85.g7de6c72.rb2.i686.rpm
chroot-ipsec-9.60-8.g994f006.rb4.i686.rpm
chroot-reverseproxy-2.4.25-338.gb940164.rb3.i686.rpm
ep-chroot-pop3-9.60-21.g22817e3.rb2.i686.rpm
ep-httpproxy-9.60-356.g39864e02.rb4.i686.rpm
ep-release-9.602-3.noarch.rpm

 

Community link:

https://community.sophos.com/products/unified-threat-management/b/utm-blog/posts/utm-up2date-9-602-released

 

 

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close