Downgrade Restrictions
See this Knowledge Base article for a list of downgrade restrictions.
When you downgrade the Fireware OS on your Firebox or XTM device, the firmware on any
paired APdevices is not automatically downgraded. We recommend that you reset the AP
device to its factory-default settings to make sure that it can be managed by the older version of
Fireware OS.
Enhancements and Resolved Issues in Fireware v11.12.1
lWhen you enable TDR on a Firebox, a TDR policy is now automatically added to your configuration to
allow connections from TDR Host Sensors on your trusted network to TDR FQDNs on TCPport 443.
lThis release resolves a Cross-Site Request Forgery vulnerability on the Fireware Web UI login page.
lThis release updates the lighttpd component used by Fireware to resolve several HTTP proxy port-
related vulnerabilities (CVE-2016-5387, CVE-2106-5388, and CVE-2016-5386). [92514]
lThis release resolves a vulnerability in the Fireware Web UI that could allow an attacker to enumerate
management user login IDs. [92884]
lThis release resolves an issue that caused session IDs to be sent in the URL for authenticated Fireware
Web UIsessions. [92679]
lThis release resolves kernel crashes on Firebox T70, M200 and M300 devices configured in drop-in
mode. [92760, 92677]
lThe Turkish timezone settings have been adjusted to eliminate timezone changes throughout the year.
[92464, 92666]
lYou can now successfully create a backup image for a Firebox T10 with multiple security subscriptions
configured. [92341]
lThe French localization of hotspot vouchers has been updated. [92716]
lThis release resolves an issue that caused the Front Panel to fail to load from Firebox System Manager.
lPolicy Manager and Firebox System Manager now negotiate stronger TLS ciphers for managment
connections. [92530]
lThis release resolves an issue that caused Policy Manager to fail to save configurations to Firebox
M400, M500, and M440 devices. [92826]
lThis release resolves an issue that caused Fireware Web UI to fail to display policies after you upgrade
your Firebox to Fireware v11.12. [92932]
lYou can now successfully save configurations that contain policies with IPv6 addresses to Fireboxes
installed with Fireware v11.11.4 or earlier. [92674]
lThis release has optimized memory usage for Firebox T10 and XTM 25/26 devices. [92647, 92341]
Networking and VPN
lPPPoE external interfaces no longer need to restart when you change the NTP, Log Server, or multi-
WAN settings on your Firebox. [90146]
Enhancements and Resolved Issues in Fireware v11.12.1
20 WatchGuard Technologies, Inc.
Terms of Use | Privacy Policy | DMCA Policy