Sophos UTM Up2date 9.716 released

06/08/2023 2 Comments

Sophos UTM

Sophos has released 9.716 for their UTM, here are the release notes:

UTM Up2date 9.716 released – Release Notes & News – UTM Firewall – Sophos Community

 

After install, whichs looks stable, we’ll get the following info on what’s been upgraded:

Up2Date 9.716002 package description:

Remarks:
System will be rebooted
Configuration will be upgraded

News:
Maintenance Release

Bugfixes:
Fix [NUTM-13537]: [Basesystem] VLAN interfaces on a RED interface will be deactivated if the RED interface is disabled and then enabled
Fix [NUTM-13689]: [Basesystem] Upgrade Apache to 2.4.56 to address numerous vulnerabilities
Fix [NUTM-14038]: [Basesystem] Address OpenSSL Vulnerabilities (CVE-2023-0286, CVE-2023-0215)
Fix [NUTM-14051]: [Basesystem] Upgrade Postgres to 9.2.24 to address numerous vulnerabilities
Fix [NUTM-14089]: [Basesystem] High CPU usage by rrdtool due to DST
Fix [NUTM-14139]: [Basesystem] Mexico Time zone still switches to DST
Fix [NUTM-13882]: [Email] Randomly getting error and can’t download the emails from Mail Manager
Fix [NUTM-14039]: [Email] Potential denial of service vulnerability in email service: CVE-2002-20001 and CVE-2022-40735
Fix [NUTM-14107]: [Email] SPX Announcement Email w/o Message-ID Header
Fix [NUTM-14172]: [Email] Potential denial of service vulnerability in SPX portal and Webadmin: CVE-2002-20001 and CVE-2022-40735
Fix [NUTM-14217]: [UI Framework] WebAdmin Post-auth Command Injection (CVE-2023-3367)
Fix [NUTM-14134]: [WAF] Potential denial of service vulnerability in Webserver Protection: CVE-2002-20001 and CVE-2022-40735

RPM packages contained:
libapr-util1-1.6.3-0.452200719.g67b5657.rb5.i686.rpm
libapr-util1-64-1.6.3-0.452200719.g67b5657.rb5.x86_64.rpm
libapr1-1.7.4-0.452200750.g614b0d4.rb5.i686.rpm
libapr1-64-1.7.4-0.452200750.g614b0d4.rb5.x86_64.rpm
libopenssl1_0_0-1.0.2j-4.1.0.451415806.ga7e529a4.rb3.i686.rpm
libopenssl1_0_0-64-1.0.2j-4.1.0.451415806.ga7e529a4.rb3.x86_64.rpm
libopenssl1_0_0_httpproxy-1.0.2j-4.1.0.451415806.ga7e529a4.rb3.i686.rpm
libudev0-147-0.110.1.2152.g6efc81d4.rb8.i686.rpm
firmwares-bamboo-9400-0.450518779.ge525b6f.rb2.i586.rpm
modauthnzaua-9.70-270.gcb78b67.rb125.i686.rpm
modauthzblacklist-9.70-372.gefe2089.rb31.i686.rpm
modavscan-9.70-387.g4b59fec.rb11.i686.rpm
modcookie-9.70-377.g63c8b0f.rb24.i686.rpm
modcustomblockpage-9.70-279.gbe16bc0.rb97.i686.rpm
modfirehose-2.5_SVNr1309567-14.g4ab2622.rb124.i686.rpm
modformhardening-9.70-367.g820d795.rb28.i686.rpm
modpcap-9.70-0.142961807.g994d6f0.rb124.i686.rpm
modproxymsrpc-0.5-121.gc7f8565.rb133.i686.rpm
modreverseauth-9.70-364.g469bdce.rb61.i686.rpm
modsecurity2-2.9.7-0.451411612.g53657e3.rb3.i686.rpm
modsecurity2_beta-2.9.0-460.g62b8fdb.rb128.i686.rpm
modsessionserver-9.70-0.247653793.g4179dcf.rb128.i686.rpm
modurlhardening-9.70-367.g820d795.rb28.i686.rpm
modwafexceptions-9.70-322.gd203205.rb75.i686.rpm
modwhatkilledus-2.01-0.258193062.g46092ac.rb128.i686.rpm
openssl-1.0.2j-4.1.0.451415806.ga7e529a4.rb3.i686.rpm
openssl-64-1.0.2j-4.1.0.451415806.ga7e529a4.rb3.x86_64.rpm
postgresql92-9.2.24-0.443148038.g247f3cd.rb6.i686.rpm
postgresql92-64-9.2.24-0.443148038.g247f3cd.rb6.x86_64.rpm
red-unified-firmwares-9700-0.451377173.g9003adc.rb2.i586.rpm
rrdtool-1.4.8-1183.g20c535b9.rb7.i686.rpm
rubygem-sophos-iaas-1.0.0-1.0.451597817.gda345c6a.rb1.i686.rpm
timezone-2023c-74.74.1.0.447544299.gffea2640.rb6.i686.rpm
udev-147-0.110.1.2152.g6efc81d4.rb8.i686.rpm
ep-confd-9.70-981.g9ed7008a6.i686.rpm
ep-ha-aws-9.70-14.gda345c6a.rb1.noarch.rpm
ep-mdw-9.70-902.g57fa525f.rb7.i686.rpm
ep-notifier-9.70-3.g3db6182.rb2.i686.rpm
ep-sasi-5.1.4-0.449740534.g58c41be.rb4.i686.rpm
ep-webadmin-9.70-855.g389bdb02a.rb6.i686.rpm
ep-webadmin-contentmanager-9.70-67.g14e31b3.rb5.i686.rpm
ep-cloud-ec2-9.70-11.gadd9b85.rb3.i686.rpm
ep-chroot-smtp-9.70-95.g677a076.rb5.i686.rpm
chroot-bind-9.11.3-0.449358503.g997f076.rb4.i686.rpm
chroot-httpd-2.4.56-0.451669677.gd347561.rb6.i686.rpm
chroot-reverseproxy-2.4.57-2.ge1e8bc9.rb2.i686.rpm
ep-chroot-pop3-9.70-11.ga5a2d06.rb3.i686.rpm
ep-httpproxy-9.70-364.g614f787b.rb5.i686.rpm
ep-httpproxy-64-9.70-364.g614f787b.rb5.x86_64.rpm
ep-httpproxy-perl-helpers-9.70-364.g614f787b.rb5.i686.rpm
ep-httpproxy-user-account-9.70-364.g614f787b.rb5.noarch.rpm
ep-release-9.716-2.noarch.rpm

Related Posts

2 Comments

  1. Mitchell Parks

    Hello sir,
    I’m a longtime reader of your blogs, and like them so much.
    Have you seen or heard about 9.717 update up2date for Sophos UTM SG, I saw
    the download available on up2date, I’m assuming it’s about an EXIM email vul fix.
    Thank you for all you do and share with the Sophos and other people,
    Mitchell Parks
    mparks@pctulsa.com
    Tulsa, OK USA

    Reply
    1. Martin (Post author)

      Thanks for this 🙂

      Yes, primarily for EXIM, sorry for the delay with the post 🙂
      https://martinsblog.dk/sophos-utm-9-717-3-released/

      Best regards
      Martin

      Reply

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close