We have just launched version 3.0.010 of the SD-RED firmware pattern update. You can download and install the firmware right away. This is a maintenance release that features essential security updates. The update includes improvements to multiple RED firmware components that address various open CVEs related to those components. 

Security Fixes

Issue Key

Summary

NRF-744

Disallow login into the uboot console during the first boot after the firmware upgrade.

NRF-742

Disable failsafe mode during firmware booting

NRF-706

Address binutils CVs by upgrading 2.42 version

NRF-671

Linux Kernel - Fix Blackduck reported CVEs

NRF-669

Upgrade libxml2 to 2.9.14

NRF-667

Upgrade dnsmasq to 2.89

NRF-651

OpenSSL Security Advisory: Upgrade OpenSSL to 1.1.1t

Issues Fixed

Issue Key

Summary

NRF-691

Unstable connection with SD-RED-60

Install Instructions

  • On Sophos Firewall web UI, navigate to Backup & Firmware > Pattern Updates.
  • If the SD-RED Firmware version is older than this release, click Update Pattern Now.
  • When ready to deploy new firmware to connected SD-RED devices, click Install. 
  • SD-RED devices will be rebooted during the firmware installation process

Supported Platforms

This pattern update will only be applied to the SD-RED 20 and 60 devices. This update will not be applied to legacy RED models that have reached end-of-life

The pattern update will be available for the following Sophos Firewall OS (SFOS) versions:

  • SFOS v18.5MR4+
  • SFOS v19GA+
  • SFOS v19.5GA+
  • SFOS v20GA+
  • SFOS v21