Advisory: Sophos Endpoint "Your connection isn't private" after reboot. Policy settings can be returned to normal. See: KB-000045954 for the latest updates.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM Version 9.352-6 and 9.318-5 released (Do not install!!)

DO NOT INSTALL - THE UPDATES ARE FAULTY (Read this thread through!)

News

· Security Update
Remarks

· System will be rebooted
Bugfixes

36115 WebAdmin reflective XSS Vulnerability
36126 OpenSSL security update 1.0.1q



This thread was automatically locked due to age.
Parents
  • Hi all:

    First of all, many thanks for pointing our attention to this issue.

    We had been able to reproduce and identify the source of the issue in the so-called Flow Monitor and will provide a fix in a future version.

    Cheers,
    Sascha Rudolph
    Senior Software Engineer

    Cheers,

    Sascha Rudolph
    Senior Software Engineer, NSG

  • Sophos people:

    Even though it might be important to install these updates, I suspect many now won't install them until the bug fixes are available. So please, give us some kind of SWAG ETA for the fixes?

    Still running 9.351.  Waiting until they fix 9.352.

Reply
  • Sophos people:

    Even though it might be important to install these updates, I suspect many now won't install them until the bug fixes are available. So please, give us some kind of SWAG ETA for the fixes?

    Still running 9.351.  Waiting until they fix 9.352.

Children
No Data