This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM Version 9.352-6 and 9.318-5 released (Do not install!!)

DO NOT INSTALL - THE UPDATES ARE FAULTY (Read this thread through!)

News

· Security Update
Remarks

· System will be rebooted
Bugfixes

36115 WebAdmin reflective XSS Vulnerability
36126 OpenSSL security update 1.0.1q



This thread was automatically locked due to age.
Parents
  • Hi all:

    First of all, many thanks for pointing our attention to this issue.

    We had been able to reproduce and identify the source of the issue in the so-called Flow Monitor and will provide a fix in a future version.

    Cheers,
    Sascha Rudolph
    Senior Software Engineer

    Cheers,

    Sascha Rudolph
    Senior Software Engineer, NSG

  • Hi Sascha,
    comes the Bugfix up2date version in the next days, or can the Sophos support fix this issues with an rpm package installation?
    One of my customer nee this fix fast on his main Gateway.

    Greetings Andy

    Cheers Andreas

     

    UTM SCE/SCA | Endpoint SCE

Reply
  • Hi Sascha,
    comes the Bugfix up2date version in the next days, or can the Sophos support fix this issues with an rpm package installation?
    One of my customer nee this fix fast on his main Gateway.

    Greetings Andy

    Cheers Andreas

     

    UTM SCE/SCA | Endpoint SCE

Children
  • Hi Andy:

    Support will be provided a corresponding RPM - so they will be able to fix this issue on customer boxes.

    Unfortunately I cannot give you any information on the Up2date schedule and when this fix will be pushed out.

    Cheers,
    Sascha

    Cheers,

    Sascha Rudolph
    Senior Software Engineer, NSG

  • Is it possible to get this rpm over your side? support answers really slow...

    greets

    zaphod
    ___________________________________________

    Home: Zotac CI321 (8GB RAM / 120GB SSD)  with latest Sophos UTM
    Work: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...

  • I'm sorry to let you know that I'm not allowed to distribute any RPMs or direct file replacements here.

    Cheers,

    Sascha Rudolph
    Senior Software Engineer, NSG

  • Just an info for all licensed Sophos Users without partner-status or without gold/platinum support:

    even you got an paid license for your UTM you will not receive the needed RPM-File from sophos support.

    You need to contact your Sophos Partner to get the file.

    greets

    zaphod
    ___________________________________________

    Home: Zotac CI321 (8GB RAM / 120GB SSD)  with latest Sophos UTM
    Work: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...

  • Totally off topic but how well does that Zotac box work for Sophos UTM at home? TIA
  • Hi Sascha,

    i opened an ticket (#5601008) for the customer UTM in myutm portal. Sophos Support answers me, that they list the issue under the bug tracking ID 36171.

    I should be patient.
    If there any news for this Sophos support will inform me.

    Can they fix this issues now, or not?

    In earlier versions of the UTM exists an heavy security leak for the Webadmin interface (http://heise.de/-3044717).

    It would be nice, if i can provide my customers an secure and fully running UTM OS and not an buggy, or an insecure UTM.

    Cheers Andreas

     

    UTM SCE/SCA | Endpoint SCE

  • Hi Ryan,

    yes offTopic... but to answer your question i run that zotac box now for 3 months as my primary firewall at home with UTM 9 and it runs awesome.. using webproxy, IPS, ATP, one IPSEC-tunnel, ssl-vpn.. it runs smooth and have no problems.. its typical home environment with about 15 clients and a 50/2 internet-link.

    greets

    zaphod

    greets

    zaphod
    ___________________________________________

    Home: Zotac CI321 (8GB RAM / 120GB SSD)  with latest Sophos UTM
    Work: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...