Sophos UTM Up2date 9.7 MR20 (9.720) released

It’s now GA, so no more phased installs, releasenotes are here:


Details of this release, along with previous releases, can be found on our official release notes page.

On 5 June 2024, the owners of the SORBS RBL service shut it down so that it is no longer available. SORBS was used by SG UTM’s Webserver Protection (WAF) in addition to the data provided by Sophos via SXL for WAF Profiles that include “Block clients with bad reputation”. We have removed references to SORBS from the product and documentation.

 

Other news

  • Maintenance Release
  • Security Release

Remarks

  • System will be rebooted
  • Configuration will be upgraded

Issues resolved

  • NUTM-14610 [Access & Identity] Strongswan Vulnerability Fixes (CVE-2017-9022 and CVE-2017-9023)
  • NUTM-14563 [Basesystem] FATAL: role “epp” does not exist in system logs
  • NUTM-14595 [Basesystem] REST API – Upgrade Swagger UI to address vulnerabilities
  • NUTM-14705 [Basesystem] Latest mobile OpenVPN clients can’t connect with compression disabled
  • NUTM-14664 [Configuration Management] Printable Configuration fails – output is blank.
  • NUTM-14365 [Logging] SSL VPN Remote Access reporting has gaps
  • NUTM-10212 [Network] Remove DTDNS and DNSPARK options from Dynamic DNS page
  • NUTM-14676 [Network] Latest OpenVPN clients require data-ciphers to be specified
  • NUTM-14739 [UI Framework] WebAdmin – Upgrade Apache to 2.4.62
  • NUTM-14741 [Up2Date] Pattern updates can’t be installed if RPM database is corrupted
  • NUTM-14663 [WAF] WAF – Upgrade Apache to 2.4.62
  • NUTM-14694 [WAF] Setting Cache-Control to no-cache, no-store for WAF login forms and themes
  • NUTM-14712 [WAF] Private TLS key material can appear in logs with debug mode enabled
  • NUTM-14345 [Web] AWS Endpoint Transport errors AD SSO
  • NUTM-14589 [Web] Standard proxy does not show certificate verification blocks in logs
  • NUTM-14606 [Web] No matching filteraction found

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close