Cisco Cisco IPS 4255 Sensor
36
Release Notes for Cisco Intrusion Prevention System 6.1(3)E3
OL-20114-01
Caveats
•
CSCsy86066—Bundle Monarchos IDM FCS build 6.1(1) for future service packs of 6.1
•
CSCsx66883—CSM package for 6.1.2 has decripancy in interface typedef
•
CSCsy76970—Latest Eclipse and Monarchos upgrade package fails
•
CSCsx07727—IPS: IDM Reports Auto Update Status as "Not Checked"
•
CSCsv80568—Tuning sig 1610.0 locks up the SSM
•
CSCsw14574—smbadvanced abort in processdecodedtcpmessage
•
CSCsx48178—sensorApp abort when reconfiguring signatures.
•
CSCsx35823—Sig 1317 with Jumbo packet may cause sensorApp abort.
•
CSCsx50254—4260/4270 speed/duplex errors in main log
•
CSCsy88163—implement sensor self-purge for memory protection (off by default)
•
CSCsu30096—CRAZYHAWK: coredump output missing stack dump and backtrace
•
CSCsy21250—add extended sensorApp memory stats to sh st vi
•
CSCsy29684—IPS 6.1.2E3: sensorApp terminates unexpectedly in UpdateTime
•
CSCsv56782—sensorApp terminates while deleting database nodes
•
CSCsz73051—CLI and IDM aborts
•
CSCsy77167—auto purge (sigEdit/sigUpdate) does not return ununsed memory
•
CSCsz83039—MSrpc UDP mode has unsafe iterator access
•
CSCsq03483—Kernel panic during sensor re-boot
•
CSCta07220—threadRef multi-thread safety violation
•
CSCta31166—iplog memory and file leak
•
CSCta23644—timer thread safety violations
•
CSCsz28844—sensorApp aborts in InspectorServiceSnmp
•
CSCta76034—sensor needs to be able to handle udld packets
IPS 6.1(3)E3 Caveats
The following issues are found in Cisco IPS 6.1(3)E3:
•
CSCse40651—Config operation on heavily loaded system may cause unresponsive system
•
CSCsg09619—IPS accepts RSA keys with exponent 3 which are vulnerable to forgery
•
CSCsh16294—IPSVIRTUALIZATION:Physical Interface info not passed to ASA/SSM Database
•
CSCsh89833—Delete event variable referenced by filter or sig from IDM
•
CSCsi60530—69xx firing but reporting wrong interface
•
CSCsi73502—6.0(2)E1: No warning message when removing sensor used by ASA
•
CSCsj57474—Frag traffic with dot1q headers misses a few sweep and atomic-ip sigs
•
CSCsj70643—Normalizer signatures not modifying-packet-inline
•
CSCsj82458—global-block-timeout allows values outside supported range
•
CSCsk53813—upgrade log files are not preserved during an upgrade
•
CSCsl66235—Setup errors after defaulting sensor config via IDM