Sophos UTM: UP2DATE 9.605-1 released

25/07/2019 0 Comments

Sophos UTM

Sophos released UTM 9.605-1 yesterday, it is a soft-release, as it is being rolled out in phases, but you can download it from their FTP here:

ftp://ftp.astaro.de/UTM/v9/up2date/u2d-sys-9.604002-605001.tgz.gpg

Release notes:
Up2Date 9.605001 package description:

Remarks:
System will be rebooted
Connected REDs will perform firmware upgrade
Connected APs will perform firmware upgrade

News:
Maintenance Release

Bugfixes:
Fix [NUTM-10885]: [Basesystem] Fallback log flooded since update to 9.6
Fix [NUTM-10667]: [Email] Emails are not being processed, have “Stale ID in DB” in debug log
Fix [NUTM-10870]: [Email] UTM not rejecting emails with dot at the end of the local part address
Fix [NUTM-10809]: [RED] Offline provisioned RED15 loses their config in case of UTM reboot
Fix [NUTM-10812]: [RED] RED can’t connect to UTM if it is configured in transparent/split mode and a DNS name as UTM hostname
Fix [NUTM-10903]: [RED] Transparent/split: DNS does not work if the gateway and DNS server are different but in the same network
Fix [NUTM-10962]: [RED] Fix for RED50 does not start up after firmware update for most scenarios
Fix [NUTM-10636]: [Reporting] Executive report not accurate – missing SSL VPN sessions
Fix [NUTM-10877]: [Sandstorm] Sandbox Activity in Webadmin does not show all activities since 9.6
Fix [NUTM-10822]: [WAF] Privilege escalation from modules’ scripts (CVE-2019-0211)
Fix [NUTM-10823]: [WAF] URL normalization inconsistency (CVE-2019-0220)
Fix [NUTM-10886]: [WAF] All HTTP requests are forwarded to HTTPS
Fix [NUTM-10978]: [WAF] reverseproxy.log does not show requested domain
Fix [NUTM-10986]: [WAF] HTML rewriting in large embedded CSS leaks memory
Fix [NUTM-10705]: [WebAdmin] Potential User Portal session cookie hijacking
Fix [NUTM-10862]: [WebAdmin] After updating to 9.6 read only admins cannot see advanced tabs
Fix [NUTM-10941]: [WebAdmin] Webadmin not accessible when user prefetch is running
Fix [NUTM-10952]: [WebAdmin] HTTPS pages sporadically no longer work with transparent proxy since 9.602
Fix [NUTM-10748]: [Web] Proxy restarted httpproxy.DeferredExpire
Fix [NUTM-10792]: [Web] Follow up: New Web Templates for content warn does not work in 9.6
Fix [NUTM-10802]: [Web] HTTPS websites are not accessible through http proxy if you follow the BSI recommendation regarding TLS
Fix [NUTM-10816]: [Web] Blockpage font rendered incorrectly in Firefox
Fix [NUTM-10876]: [Web] Web Proxy blocks range requests since 9.6
Fix [NUTM-10895]: [Web] Video from NEST CAM constantly loading
Fix [NUTM-10985]: [Web] HTTP proxy is getting crashed with segfault and core dump

RPM packages contained:
modauthnzaua-9.60-403.gcb78b67.rb51.i686.rpm
modauthzblacklist-9.60-385.g1471b81.rb43.i686.rpm
modavscan-9.60-422.g0c80dbc.rb46.i686.rpm
modcookie-9.60-0.g8f24856.rb50.i686.rpm
modcustomblockpage-9.60-412.gbe16bc0.rb46.i686.rpm
modfirehose-2.5_SVNr1309567-14.g4ab2622.rb51.i686.rpm
modformhardening-9.60-385.g1471b81.rb56.i686.rpm
modpcap-9.60-0.142961807.g994d6f0.rb51.i686.rpm
modproxymsrpc-0.5-121.gc7f8565.rb59.i686.rpm
modproxyprotocol-0.1-30.gac71dfd.rb44.i686.rpm
modreverseauth-9.60-95.g852e9e5.rb53.i686.rpm
modsecurity2-2.9.1-266.g649c52a.rb55.i686.rpm
modsecurity2_beta-2.9.0-460.g62b8fdb.rb55.i686.rpm
modsessionserver-9.60-0.247653793.g4179dcf.rb54.i686.rpm
modurlhardening-9.60-385.g1471b81.rb54.i686.rpm
modwafexceptions-9.60-0.237979534.g7d2ba1b.rb47.i686.rpm
modwhatkilledus-2.01-0.258193062.g46092ac.rb55.i686.rpm
oculusd-1.0.0-0.322335831.gdf96f5d.rb5.i686.rpm
oculusd-dlz_oculus-1.0.0-0.322335831.gdf96f5d.rb5.i686.rpm
oculusd-highmem-1.0.0-0.322335831.gdf96f5d.rb5.i686.rpm
oculusd-lowmem-1.0.0-0.322335831.gdf96f5d.rb5.i686.rpm
red-firmware2-5214-0.321960711.ge0654e660.rb5.noarch.rpm
red-unified-firmwares-9600-0.327764418.ge5aab2f.rb2.i586.rpm
red15-firmware-5214-0.321960646.g2b59b558a.rb5.noarch.rpm
ep-reporting-c-9.60-282.g439c02e.rb5.i686.rpm
ep-aua-9.60-37.gd6fadd4.rb6.i686.rpm
ep-branding-ASG-afg-9.60-70.g3766ff2.rb7.noarch.rpm
ep-branding-ASG-ang-9.60-70.g3766ff2.rb7.noarch.rpm
ep-branding-ASG-asg-9.60-70.g3766ff2.rb7.noarch.rpm
ep-branding-ASG-atg-9.60-70.g3766ff2.rb7.noarch.rpm
ep-branding-ASG-aug-9.60-70.g3766ff2.rb7.noarch.rpm
ep-confd-9.60-1409.g390f7642f.rb8.i686.rpm
ep-localization-afg-9.60-50.g1ea8977.rb5.i686.rpm
ep-localization-ang-9.60-50.g1ea8977.rb5.i686.rpm
ep-localization-asg-9.60-50.g1ea8977.rb5.i686.rpm
ep-localization-atg-9.60-50.g1ea8977.rb5.i686.rpm
ep-localization-aug-9.60-50.g1ea8977.rb5.i686.rpm
ep-mdw-9.60-1129.g3744ddeb.rb8.i686.rpm
ep-red-9.60-35.g77f779b.rb2.i686.rpm
ep-webadmin-9.60-1143.g4e7cb3c40.rb8.i686.rpm
ep-webadmin-contentmanager-9.60-69.g78f6e76.rb7.i686.rpm
ep-chroot-httpd-9.60-30.g7d1dbc2.rb3.noarch.rpm
ep-chroot-smtp-9.60-88.g5143477.rb4.i686.rpm
chroot-reverseproxy-2.4.25-346.g752163a.rb2.i686.rpm
ep-httpproxy-9.60-374.g025c0ad5.rb4.i686.rpm
ep-release-9.605-1.noarch.rpm

Related Posts

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close