Cisco Cisco Web Security Appliance S170
C I S C O I R O N P O R T A S Y N C O S 6 . 3 . 8 F O R W E B R E L E A S E N O T E S
41
Fixed: Security vulnerability in OpenSSL
A security vulnerability, CVE-2009-0590, was identified in OpenSSL that affected the IronPort
Web Security appliance. Due to this vulnerability, a user who browsed to a web server
hosting a carefully crafted SSL server certificate could cause a denial of service. This issue has
been fixed. [Defect ID: 49624]
Web Security appliance. Due to this vulnerability, a user who browsed to a web server
hosting a carefully crafted SSL server certificate could cause a denial of service. This issue has
been fixed. [Defect ID: 49624]
Fixed: Web Proxy generates a core file when processing some transparent authentication
requests
requests
Previously, the Web Proxy generated a core file when processing some transparent
authentication requests. This no longer occurs. [Defect ID: 50198]
authentication requests. This no longer occurs. [Defect ID: 50198]
Fixed: Web Proxy generates a core file and restarts multiple times a day when fetching
content from the memory cache
content from the memory cache
Previously, the Web Proxy generated a core file and restarted multiple times a day when
fetching content from the memory cache. This no longer occurs. [Defect ID: 50405]
fetching content from the memory cache. This no longer occurs. [Defect ID: 50405]
Fixed: Slow response times experienced after McAfee license expires
Previously, users experienced slow response times after the McAfee license expired on the
Web Security appliance. This no longer occurs. [Defect ID: 50449]
Web Security appliance. This no longer occurs. [Defect ID: 50449]
Fixed: Policy trace feature does not list matching policy when the request fails to
authenticate
authenticate
Previously, when you used the policy trace feature without entering a user name and the
request matched policies requiring authentication, the policy trace feature properly showed
that the request was blocked due to failed authentication, but it did not list which policies
matched the request. This no longer occurs. [Defect ID: 40493]
request matched policies requiring authentication, the policy trace feature properly showed
that the request was blocked due to failed authentication, but it did not list which policies
matched the request. This no longer occurs. [Defect ID: 40493]
Fixed: Policy trace feature does not display correct policies when policies lists authorized
users in an authorization group
users in an authorization group
Previously, the policy trace feature did not display the correct policies when the policies listed
authorized users in an authorization group. The policy trace listed either “None” or the global
policy. However, the policy trace feature works when the policies list specific authorized
users. This no longer occurs. Now, the policy trace feature displays the correct policies.
[Defect ID: 43078]
authorized users in an authorization group. The policy trace listed either “None” or the global
policy. However, the policy trace feature works when the policies list specific authorized
users. This no longer occurs. Now, the policy trace feature displays the correct policies.
[Defect ID: 43078]
Fixed: Preview pages in the web interface do not appear using Safari
Previously, when you clicked a link in the web interface to preview a page, such as the
“Preview Custom URL,” the HTML page did not appear when using the Safari browser with
the pop-up blocker enabled. This no longer occurs. Now, a popup message appears informing
users that pop-up blocking is enabled and they may need to disable it for the page to appear.
[Defect ID: 35487]
“Preview Custom URL,” the HTML page did not appear when using the Safari browser with
the pop-up blocker enabled. This no longer occurs. Now, a popup message appears informing
users that pop-up blocking is enabled and they may need to disable it for the page to appear.
[Defect ID: 35487]