Cisco Cisco Firepower Management Center 2000
17
FireSIGHT System Release Notes
Version 5.3.1.3
Resolved Issues
Step 4
Select
System > Updates
.
The Product Updates tab appears.
Step 5
Click the install icon next to the uninstaller that matches the update you want to remove.
The Install Update page appears.
Step 6
Select the Defense Center and click
Install
, then confirm that you want to uninstall the update and reboot
the device.
The uninstallation process begins. You can monitor the uninstallation progress in the task queue (
System
> Monitoring > Task Status
).
Caution
Do not use the web interface to perform any other tasks until the uninstallation has completed and the
Defense Center reboots. Before the uninstallation completes, the web interface may become unavailable
and the Defense Center may log you out. This is expected behavior; log in again to view the task queue.
If the uninstallation is still running, do not use the web interface until the uninstallation has completed.
If you encounter issues with the uninstallation (for example, if the task queue indicates that the update
has failed or if a manual refresh of the task queue shows no progress for several minutes), do not restart
the uninstallation. Instead, contact Support.
Defense Center reboots. Before the uninstallation completes, the web interface may become unavailable
and the Defense Center may log you out. This is expected behavior; log in again to view the task queue.
If the uninstallation is still running, do not use the web interface until the uninstallation has completed.
If you encounter issues with the uninstallation (for example, if the task queue indicates that the update
has failed or if a manual refresh of the task queue shows no progress for several minutes), do not restart
the uninstallation. Instead, contact Support.
Step 7
After the uninstallation finishes, clear your browser cache and force a reload of the browser. Otherwise,
the user interface may exhibit unexpected behavior.
the user interface may exhibit unexpected behavior.
Step 8
Log in to the Defense Center.
Step 9
Select
Help > About
and confirm that the software version is listed correctly: Version 5.3.1.
Step 10
Verify that the appliances in your deployment are successfully communicating and that there are no
issues reported by the health monitor.
issues reported by the health monitor.
Resolved Issues
You can track defects resolved in this release using the Cisco Bug Search Tool
(
(
https://tools.cisco.com/bugsearch/
). A Cisco account is required. To view defects addressed in older
versions, refer to the legacy caveat tracking system. The following sections list the issues resolved in the
Version 5.3.1.3 update.
Version 5.3.1.3 update.
Issues Resolved in Version 5.3.1.3:
•
Security Issue
Addressed an arbitrary script injection vulnerability allowing unauthenticated,
remote attackers to exploit GNU C library. The fix is addressed in CVE-2015-0235.
•
Security Issue
Addressed multiple vulnerabilities in SSLv3 that allowed external attacks on client
connections. The fix is addressed in CVE-2014-3566.
•
Security Issue
Addressed multiple injection vulnerabilities as described in CVE-2007-6750.
•
Security Issue
Resolved several cross-site scripting (XSS) vulnerabilities.
•
Security Issue
Resolved an unauthorized vulnerability in Universal Unique Identifier (UUID)
manipulation.
•
The FireSIGHT System Online Help documents that HTTP X-Forwarded-For (XFF) headers are now
a configurable option in the rule editor for intrusion policies. (139492/CSCze91210,
141233/CSCze92868)
a configurable option in the rule editor for intrusion policies. (139492/CSCze91210,
141233/CSCze92868)