Примечания к выпуску для Cisco Cisco Firepower Management Center 2000
22
FireSIGHT System Release Notes
Resolved Issues
Resolved an issue where, if you configured a static route on your appliance and reapplied your system policy, the system incorrectly
deleted the static route. (CSCuw07826)
deleted the static route. (CSCuw07826)
Resolved an issue where the system displayed the incorrect device name in correlation events generated by a correlation rule on
malware events. (CSCuw11056)
malware events. (CSCuw11056)
Resolved an issue where registering and managing multiple devices on a DC4000 caused system connection issues. (CSCuw11462)
Resolved an issue where, if you registered a device to the primary Defense Center in a high availability environment and renamed the
device to a name containing 40 characters or more before device synchronization completed, device registration to the secondary
Defense Center failed. (CSCuw27368)
device to a name containing 40 characters or more before device synchronization completed, device registration to the secondary
Defense Center failed. (CSCuw27368)
Resolved an issue where, if you created an access control rule with the default action set to either Interactive Block or Interactive
Block with Reset, clicking Continue on the interactive block page did not redirect to a HTTPS page. (CSCuw28868)
Block with Reset, clicking Continue on the interactive block page did not redirect to a HTTPS page. (CSCuw28868)
Resolved an issue where, if you used a Windows OS computer to access the web interface and created an SSL policy, the firewall
incorrectly blocked sessions even if you did not set the default action to Block. (CSCuw36519)
incorrectly blocked sessions even if you did not set the default action to Block. (CSCuw36519)
Resolved an issue where the system with an applied file policy failed to detect and process FTP traffic. (CSCuw49257)
Resolved an issue where deleting third-party vulnerabilities via a host input client connection caused system issues. (CSCuw56215)
Resolved an issue where, if you applied an access control policy referencing four or more file policies to a Cisco ASA FirePOWER
module, the system incorrectly processed Simple Mail Transfer Protocol (SMTP) traffic and experienced issues. (CSCuw65202)
module, the system incorrectly processed Simple Mail Transfer Protocol (SMTP) traffic and experienced issues. (CSCuw65202)
Resolved an issue where systems with enabled traffic profiles experienced disk space issues. (CSCuw74528)
Resolved an issue where, if you executed host input commands on a Defense Center in a high availability configuration, the system
failed to apply the host input commands to the secondary Defense Center in the pair. (CSCuw98376)
failed to apply the host input commands to the secondary Defense Center in the pair. (CSCuw98376)
Resolved an issue where, after resolving a disk space issue, the system continued to experience issues storing events and logged All
shard connections are busy for partition errors. (CSCux00142)
shard connections are busy for partition errors. (CSCux00142)
Issues Resolved in Previous Versions
Previously resolved issues are listed by version.
Issues resolved in Version 5.4.0.5 and Version 5.4.1.4:
Security Issue
Resolved an issue where the system did not properly encode a newly added comment to an access control policy rule.
Security Issue
Addressed multiple cross-site request forgery (CSRF) vulnerabilities as described in CVE-2015-4242.
Resolved an issue where, if you logged into your system as a user other than the admin user and edited the base layer of an intrusion
policy, the system incorrectly marked all affected edited intrusion policies as updated by admin when it should not have.
(CSCur79437)
policy, the system incorrectly marked all affected edited intrusion policies as updated by admin when it should not have.
(CSCur79437)
Resolved an issue where, if you configured a system policy to use remote NTP server to synchronize time to a system with registered
devices and you disabled device management, NTP failed to sync updated time to the device after the system enabled device
management. (CSCur97671)
devices and you disabled device management, NTP failed to sync updated time to the device after the system enabled device
management. (CSCur97671)
Resolved an issue where, in some cases, the Defense Center experienced system issues and failed to load access control rules.
(CSCut30047)
(CSCut30047)
Resolved an issue where the system experienced latency while downloading large number of groups and users from Microsoft Active
Directory Server and the system did not match traffic to the access control rule referencing LDAP groups. (CSCut56233)
Directory Server and the system did not match traffic to the access control rule referencing LDAP groups. (CSCut56233)
Resolved an issue where the system incorrectly handled static routes configured on Series 3 devices with multiple interfaces.
(CSCut84953)
(CSCut84953)
Resolved an issue where the system displayed an internal server error if you viewed the Discovery Statistics page on a Defense Center
that did not have any discovery events. (CSCuu00749)
that did not have any discovery events. (CSCuu00749)