Enhancements and Resolved Issues in Fireware v11.10
Release Notes 17
Enhancements and Resolved Issues in Fireware v11.10
General
lThe features associated with Fireware Pro, such as Policy Based Routing, Server Load Balancing, and
Dynamic Routing, now work correctly on the Firebox M400 and M500 models. [83576]
lThis release patches the OpenVPN component to address vulnerability CVE-2014-8104. [83478]
lOpenSSL has been updated to version to 1.0.1j to address CVE-2014-3513. [83498]
lOpenSSL has been updated version to 1.0.1j to address POODLE vulnerability on TLS TA14-290A.
[83594]
lThis release updates the glibc component to apply the patch for the "GHOST" vulnerability (CVE-2015-
0235). [84277]
lThis release updates code related to Firebox and XTM wireless devices to improve stability. [82920,
82705]
User Interface and Centralized Management
lThis release resolves an issue that prevented the Firebox DB users list from displaying correctly in the
Web UI. [82938]
lThis release resolves an issue that caused the wgagent process to crash and prevented management
connections. [83022]
lThe Web Setup Wizard now completes correctly when viewed in Japanese. [83315]
lThis release adds Click Jacking and XFS protection to the Firebox XTM Web UI. [84136]
lThis release resolves an issue that prevented all proxy rules from loading correctly after a reboot when
the configuration contains a large number of policies. [83413]
lAn issue has been resolved that caused Policy Manager to fail to save configurations after an upgrade to
v11.94 with a log message that referred to “Java NullPointerException”. [83483]
lWhen using SSL Management Tunnels, the remote firewall now uses the IP address for the SSL
Management Tunnel first when contacting the server. [81377]
Policies, Proxies, and Subscription Services
lYou can enable time and bandwidth usage quotas for users on your network for access to external sites.
[67517]
lGateway Antivirus, Intrusion Prevention, spamBlocker, and WebBlocker services now have activation
wizards that guide you through the steps to enables these services and provide a basic configuration.
[79956, 80001, 83539]
lA deny action is now available for DLP email actions. [78300]
lThe HTTPS SNI Block action no longer adds the host sending the traffic to the Blocked Sites list.
[83412]
lHTTPS proxy exceptions for Content Inspection by Domain Name now correctly override rules for
Content Inspection by WebBlocker category. [83274]
lThis release resolves a problem that caused the spamd process to crash. [82796]
lThis release resolves an issue that caused the scand process to crash when DLP is in use. [83299]
lThis release resolves an issue that caused the proxy process to crash and restart. [83225]
lThis release resolves an issue in the HTTPS proxy with Content Inspection, where HTTPS websites
failed when the HTTPS client hello contained multiple TLS protocols. [83510]
lAfter changing the DNS server IP addresses on the Firebox, spamBlocker now correctly uses the new
IP addresses for DNS lookups. [83658]
Terms of Use | Privacy Policy | DMCA Policy
2006-2021 Rsmanuals.com