We've just released SG UTM version 9.709. As usual, the release will be rolled out in phases:

During the phased rollout of version 9.708 we discovered an issue that affected the SPX Mail Encryption user portal. We decided to put the rollout of version 9.708 on hold until we could publish a fix for that issue in 9.709. We will continue the rollout of 9.708 alongside 9.709 and we recommend that customers who have not already upgraded to 9.708 apply both upgrades together.


  • Maintenance Release
  • Security Release


  • System will be rebooted
  • Configuration will be upgraded

Issues Resolved

  • NUTM-12868 [Email] It is not possible to permanently block an IP from the SMTP-Proxy if authentication is enabled
  • NUTM-13008 [Email] Public DNS causing blocked connection with RBL
  • NUTM-13193 [Email] SPX portal 404 NO SUCH USER after upgrading to 9.708
  • NUTM-12791 [Wireless] Address the Frag Attack vulnerabilities for Local Wifi and connected AP devices (see this article for more details)
  • NUTM-13263 [Wireless] Integrate updated AP firmware (v. 11.0.017) to address FragAttack issues
  • NUTM-12971 [WAF] Update Apache Runtime Library (APR) to address CVE-2021-35940
  • NUTM-12861 [WAF] Upgrade Apache to address CVE-2020-13950, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438