This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Up2Date 8.304 Soft-Release

Hi everyone, we have made available ASG V8.304 as a soft-release. This is specifically to address a vulnerability in IPSec which was recently published. As such, this security Up2Date should be applied as soon as possible if you use IPSec.
*Due to the security-related nature of this package, we will GA push this tomorrow, on the 24th of May.

Up2Date 8.304 Details
News:
• Fix IPsec Vulnerability

Remarks:
• System will be rebooted

Bugfixes:
• no Bugfixes in this release

Download:
Link: ftp://ftp.astaro.de/ASG/v8/up2date/u2d-sys-8.304.tgz.gpg
Size: ~1.5MB
MD5: 77484d31557421f5e65d66438499ea8a

This thread was automatically locked due to age.

Parents

0 AngeloC over 13 years ago

To add to d12fk's post, PSK IPsec tunnels are not affected, and X.509 certificate-based ones also do not appear to be subject to this, however things might change as more information is available.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 AngeloC over 13 years ago

To add to d12fk's post, PSK IPsec tunnels are not affected, and X.509 certificate-based ones also do not appear to be subject to this, however things might change as more information is available.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 d12fk over 13 years ago in reply to AngeloC

X.509 based authentication is also affected by this. It's just a little harder to exploit because the PKI stuff also needs to match the setup.
Cancel
Vote Up 0 Vote Down

Cancel