Manualsbrain.com
  1. Manuali
  2. Marche
  3. Cisco
  4. Cisco IPS 4255 Sensor

Cisco Cisco IPS 4255 Sensor

Scarica
Pagina di 38
 
36
Release Notes for Cisco Intrusion Prevention System 6.1(3)E3
OL-20114-01
  Caveats
CSCsy86066—Bundle Monarchos IDM FCS build 6.1(1) for future service packs of 6.1
CSCsx66883—CSM package for 6.1.2 has decripancy in interface typedef
CSCsy76970—Latest Eclipse and Monarchos upgrade package fails
CSCsx07727—IPS: IDM Reports Auto Update Status as "Not Checked"
CSCsv80568—Tuning sig 1610.0 locks up the SSM
CSCsw14574—smbadvanced abort in processdecodedtcpmessage
CSCsx48178—sensorApp abort when reconfiguring signatures.
CSCsx35823—Sig 1317 with Jumbo packet may cause sensorApp abort.
CSCsx50254—4260/4270 speed/duplex errors in main log
CSCsy88163—implement sensor self-purge for memory protection (off by default)
CSCsu30096—CRAZYHAWK: coredump output missing stack dump and backtrace
CSCsy21250—add extended sensorApp memory stats to sh st vi
CSCsy29684—IPS 6.1.2E3: sensorApp terminates unexpectedly in UpdateTime
CSCsv56782—sensorApp terminates while deleting database nodes
CSCsz73051—CLI and IDM aborts
CSCsy77167—auto purge (sigEdit/sigUpdate) does not return ununsed memory
CSCsz83039—MSrpc UDP mode has unsafe iterator access
CSCsq03483—Kernel panic during sensor re-boot
CSCta07220—threadRef multi-thread safety violation
CSCta31166—iplog memory and file leak
CSCta23644—timer thread safety violations
CSCsz28844—sensorApp aborts in InspectorServiceSnmp
CSCta76034—sensor needs to be able to handle udld packets
IPS 6.1(3)E3 Caveats
The following issues are found in Cisco IPS 6.1(3)E3:
CSCse40651—Config operation on heavily loaded system may cause unresponsive system
CSCsg09619—IPS accepts RSA keys with exponent 3 which are vulnerable to forgery
CSCsh16294—IPSVIRTUALIZATION:Physical Interface info not passed to ASA/SSM Database
CSCsh89833—Delete event variable referenced by filter or sig from IDM
CSCsi60530—69xx firing but reporting wrong interface
CSCsi73502—6.0(2)E1: No warning message when removing sensor used by ASA
CSCsj57474—Frag traffic with dot1q headers misses a few sweep and atomic-ip sigs
CSCsj70643—Normalizer signatures not modifying-packet-inline
CSCsj82458—global-block-timeout allows values outside supported range
CSCsk53813—upgrade log files are not preserved during an upgrade
CSCsl66235—Setup errors after defaulting sensor config via IDM