Hi Everyone,

We've just released 9.358 to the Up2Date servers. This is a full GA release, meaning that all firewall running will be offered the automatic update.


  • Security Update


  • System will be rebooted
  • Configuration will be updated
  • Connected RED devices will perform firmware upgrade
  • Connected WiFi APs will perform firmware upgrade


  • NUTM-5067 [Access & Identity] Patch RED15(w) against Off-Path TCP Exploits (CVE-2016-5696)
  • NUTM-5476 [Basesystem] OpenSSL security update (1.0.1u)
  • NUTM-5479 [Basesystem] BIND Security update (CVE-2016-2776)
  • NUTM-5731 [Basesystem] Linux Kernel vulnerability "Dirty Cow" (CVE-2016-5195)
  • NUTM-5600 [WebAdmin] Authenticated users might gain access to stored passwords (CVE-2016-7397, CVE-2016-7442)
  • NUTM-3972 [WiFi] Update OpenSSL for AP firmware (CVE-2016-2108, CVE-2016-2107)

Firmware Update:

From 9.357:

DL: ftp://ftp.astaro.de/UTM/v9/up2date/u2d-sys-9.357001-358003.tgz.gpg

Size: ~92M

MD5: 6afb9b81aa983ca087685b537ee71a24