Cisco Cisco FirePOWER Appliance 7010 Notas de publicación
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
Version 5.2.0.9
Sourcefire 3D System Release Notes
14
Issues Resolved in Version 5.2.0.9
•
Resolved an issue where, if the system attempted to save multiple
scheduled reports to remote storage, reports saved to local storage instead.
(143707/CSCze94120)
•
Resolved an issue where you could not switch between the months on the
Scheduling page. (143788/CSCze94220)
•
Resolved an issue where the primary and secondary devices in a clustered
stack were unable to reestablish high availability link connectivity if the
system experienced a loss of high availability link. (143906/CSCze94080)
•
Resolved an issue where, during the processing of retransmitted
transmission control protocol (TCP) packets, the devices could experience
additional latency. (144222/CSCze94683)
•
Resolved an issue where the system experienced a FSIC failure.
(144878/CSCze95325)
•
Resolved an issue where the 40GB fiber NetMod traffic statistics was
incorrectly logged traffic on the wrong 40GB port. (145515/CSCze95830)
•
Resolved an issue where you were unable to configure your Defense
Center as the network time protocol (NTP) source. (CSCus75305).
Version 5.2.0.7
•
Security Issue
Addressed an arbitrary injection vulnerability allowing
unauthenticated, remote attackers to execute commands via Bash. The fix
addresses CVE-2014-6271 and CVE-2014-7169. For more information, refer
to the Cisco Security Advisory page at
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-
sa-20140926-bash
. (144861/CSCze95469, 144940/CSCze95446,
144947/CSCze96152)
Version 5.2.0.6
•
Security Issue
Addressed multiple cross-site scripting (XSS) vulnerabilities.
•
Security Issue
Addressed multiple cross-site request forgery (CSRF)
vulnerabilities.
•
Security Issue
Addressed multiple injection vulnerabilities, including HTML
and command line injections.
•
Security Issue
Addressed multiple vulnerability issues in Linux, strongSwan,
and Wireshark, including those described in CVE-2013-2237,
CVE-2013-5718, CVE-2013-5719, CVE-2013-5720, CVE-2013-5721,
CVE-2013-5722, and CVE-2013-2338.
•
Resolved an issue where, if you modified the interface type on a routed or
switched interface associated with a hybrid interface, applying the device
configuration failed. (132221/CSCze88314)
•
Resolved an issue where, if you configured Simple Network Management
Protocol (SNMP) polling on a Series 3 managed device, the system
retrieved non-compliant RFC data. (135323/CSCze89413)