We have just launched version 3.0.010 of the SD-RED firmware pattern update. You can download and install the firmware right away. This is a maintenance release that features essential security updates. The update includes improvements to multiple RED firmware components that address various open CVEs related to those components.
Security Fixes
Issue Key |
Summary |
NRF-744 |
Disallow login into the uboot console during the first boot after the firmware upgrade. |
NRF-742 |
Disable failsafe mode during firmware booting |
NRF-706 |
Address binutils CVs by upgrading 2.42 version |
NRF-671 |
Linux Kernel - Fix Blackduck reported CVEs |
NRF-669 |
Upgrade libxml2 to 2.9.14 |
NRF-667 |
Upgrade dnsmasq to 2.89 |
NRF-651 |
OpenSSL Security Advisory: Upgrade OpenSSL to 1.1.1t |
Issues Fixed
Issue Key |
Summary |
NRF-691 |
Unstable connection with SD-RED-60 |
Install Instructions
- On Sophos Firewall web UI, navigate to Backup & Firmware > Pattern Updates.
- If the SD-RED Firmware version is older than this release, click Update Pattern Now.
- When ready to deploy new firmware to connected SD-RED devices, click Install.
- SD-RED devices will be rebooted during the firmware installation process
Supported Platforms
This pattern update will only be applied to the SD-RED 20 and 60 devices. This update will not be applied to legacy RED models that have reached end-of-life.
The pattern update will be available for the following Sophos Firewall OS (SFOS) versions:
- SFOS v18.5MR4+
- SFOS v19GA+
- SFOS v19.5GA+
- SFOS v20GA+
- SFOS v21