Patch release notes 1908h
Release notes for Vyatta NOS 1908h, released June 19, 2020.
Issues resolved
Issues resolved in release 1908h.
| Issue number | Priority | Summary |
|---|---|---|
| VRVDR-51185 | Blocker | Link does not come up after swapping 1000BASE-T SFP for 1000BASE-X SFP |
| VRVDR-51066 | Blocker | 1908g performance hit with vCSR vnf scenario in Small, Medium and Large Platforms |
| VRVDR-50939 | Blocker | BFD session retained in admin down state when interface is disabled |
| VRVDR-50569 | Blocker | SIAD BFD inter-op issue with Cisco 7609S |
| VRVDR-51385 | Critical | Dataplane crash in next_hop_list_find_path_using_ifp |
| VRVDR-51295 | Critical | Changing speed on interface resets configured MTU to default |
| VRVDR-51179 | Critical | live-cd installations should not install all unique state |
| VRVDR-50754 | Critical | Cannot perform update on H2O Update Capsule due to missing efivar tool |
| VRVDR-50705 | Critical | show history and tech support outputs incorrectly show order of CLI commands executed |
| VRVDR-50665 | Critical | Permit local user fallback following TACACS+ failure on read-only file system |
| VRVDR-50621 | Critical | Duplicate entries added to dp_event_register() |
| VRVDR-50614 | Critical | ADI V150 with 100M physical WAN ports does not show drops with 100M QoS shaper applied |
| VRVDR-50560 | Critical | show vpn ike secrets allows operator and members outside the secrets group to display secrets |
| VRVDR-50306 | Critical | ADI Spirent probe RFC2544 test failure due to small packet loss with 100M speed and 50M QoS shaper |
| VRVDR-50237 | Critical | QoS not working when applied in certain order |
| VRVDR-49231 | Critical | PPPoE client not re-establishing dropped connection automatically |
| VRVDR-48466 | Critical | DNS nslookup query in a routing instance vrf is broken |
| VRVDR-48337 | Critical | NCS fails to load vyatta-*system-image YANG |
| VRVDR-51483 | Major | Removing guest configuration fails with scripting error |
| VRVDR-51443 | Major | IPv6 router-advert CLI missing on switch VLAN interfaces |
| VRVDR-51183 | Major | FAL neighbour del log is generated by data plane for each ARP received for an unknown address |
| VRVDR-51008 | Major | When the /var/log partition exists, journal files from previous installs are retained but not rotated |
| VRVDR-50279 | Major | RX error incrementing on the bond1 interface, but no errors on physical interface |
| VRVDR-49442 | Major | SNMP related SysLog messages at wrong log level |
| VRVDR-49326 | Major | At system login, user-level operator show queuing command does not work |
| VRVDR-49656 | Minor | PTP: IDT servo is built without optimization |
| VRVDR-48203 | Minor | Split IDT servo into separate shared libraries |
Security vulnerabilities resolved
Security vulnerabilities resolved in release 1908h.
| Issue number | CVSS | Advisory | Summary |
|---|---|---|---|
| VRVDR-51236 | 8.8 | DSA-4689-1 | CVE-2019-6477, CVE-2020-8616, CVE-2020-8617: Debian DSA-4689-1: bind9 – security update |
| VRVDR-50530 | 7.1 | DSA-4647-1 | CVE-2020-0556: Debian DSA-4647-1: bluez – security update |
| VRVDR-51054 | 6.7 | DSA-4688-1 | CVE-2020-10722, CVE-2020-10723, CVE-2020-10724: Debian DSA-4688-1: dpdk – security update |
| VRVDR-51142 | 5.5 | DSA-4685-1 | CVE-2020-3810: Debian DSA-4685-1: apt – security update |