Patch release notes 1912s
Release notes for Vyatta NOS 1912s, released January 25, 2022.
Issues resolved
Issues resolved in release 1912s.
Issue number | Priority | Summary |
---|---|---|
VRVDR-56131 | Blocker | ping/ssh from remote server to device connected to s9500 SIAD fails, but reachable locally |
VRVDR-56672 | Critical | SNAT SIP ALG misinterprets SDP part of packet payload header causing dataplane crash |
VRVDR-56576 | Critical | Dataplane crash while capturing traffic |
VRVDR-47554 | Major | Validate GRE tunnel transport local-ip |
Security vulnerabilities resolved
Security vulnerabilities resolved in release 1912s.
Issue number | CVSS | Advisory | Summary |
---|---|---|---|
VRVDR-56791 | 9.8 | DLA-2860-1 | CVE-2018-7750, CVE-2018-1000805: Debian DLA-2860-1 : paramiko - LTS security update |
VRVDR-56689 | 9.8 | DLA-2836-1 | CVE-2021-43527: Debian DLA-2836-1 : nss - LTS security update |
VRVDR-56493 | 9.8 | DLA-2802-1 | CVE-2018-16062, CVE-2018-16402, CVE-2018-18310, CVE-2018-18520, CVE-2018-18521, CVE-2019-7150, CVE-2019-7665:Debian DLA-2802-1 : elfutils - LTS security update |
VRVDR-56665 | 9.8 | DLA-2834-1 | CVE-2018-20721: Debian DLA-2834-1 : uriparser - LTS security update |
VRVDR-56647 | 8.8 | DLA-2827-1 | CVE-2019-8921, CVE-2019-8922, CVE-2021-41229: Debian DLA-2827-1 : bluez - LTS security update |
VRVDR-56645 | 8.8 | DLA-2828-1 | CVE-2017-14160, CVE-2018-10392, CVE-2018-10393: Debian DLA-2828-1 : libvorbis - LTS security update |
VRVDR-56496 | 8.8 | DLA-2804-1 | CVE-2019-7572, CVE-2019-7573, CVE-2019-7574, CVE-2019-7575, CVE-2019-7576, CVE-2019-7577, CVE-2019-7578, CVE-2019-7635, CVE-2019-7636, CVE-2019-7637, CVE-2019-7638, CVE-2019-13616:Debian DLA-2804-1 : libsdl1.2 - LTS security update |
VRVDR-56789 | 8.1 | DLA-2849-1 | CVE-2021-22207, CVE-2021-22235, CVE-2021-39921, CVE-2021-39922, CVE-2021-39923, CVE-2021-39924, CVE-2021-39925, CVE-2021-39928, CVE-2021-39929 :Debian DLA-2849-1 : wireshark - LTS security update |
VRVDR-56769 | 8.1 | DLA-2848-1 | CVE-2019-13115, CVE-2019-17498 :Debian DLA-2848-1 : libssh2 - LTS security update |
VRVDR-56834 | 7.8 | DLA-2876-1 | CVE-2017-17087, CVE-2019-20807, CVE-2021-3778, CVE-2021-3796:Debian DLA-2876-1 : vim - LTS security update |
VRVDR-56790 | 7.5 | DLA-2853-1 | CVE-2021-41817, CVE-2021-41819: Debian DLA-2853-1 : ruby2.3 - LTS security update |
VRVDR-56680 | 7.5 | DLA-2837-1 | CVE-2021-43618: DLA-2837-1 : gmp - LTS security update |
VRVDR-56664 | 7.5 | DLA-2833-1 | CVE-2018-5764: Debian DLA-2833-1 : rsync - LTS security update |
VRVDR-56503 | 7.5 | DLA-2807-1 | CVE-2018-5740, CVE-2021-25219: Debian DLA-2807-1 : bind9 - LTS security update |
VRVDR-56315 | 7.5 | DLA-2788-1 | CVE-2021-41991: Debian DLA-2788-1: A denial-of-service vulnerability in the in-memory certificate cache was discovered in strongSwan |
VRVDR-56792 | 7.1 | DLA-2871-1 | CVE-2021-43818: Debian DLA-2871-1 : lxml - LTS security update |
VRVDR-56495 | 6.7 | DLA-2801-1 | CVE-2017-9525, CVE-2019-9704, CVE-2019-9705, CVE-2019-9706:Debian DLA-2801-1 : cron - LTS security update |
VRVDR-56497 | 5.5 | DLA-2805-1 | CVE-2019-1010305: Debian DLA-2805-1 : libmspack - LTS security update |
VRVDR-56644 | 4.7 | DLA-2830-1 | CVE-2018-20482: Debian DLA-2830-1 : tar - LTS security update |
VRVDR-56511 | N/A | DLA-2808-1 | CVE-2021-3733, CVE-2021-3737: Debian DLA-2808-1 : python3.5 - LTS security update |
VRVDR-56459 | N/A | DLA-2798-1 | Debian DLA-2798-1 : libdatetime-timezone-perl - LTS security update |
VRVDR-56458 | N/A | DLA-2797-1 | Debian DLA-2797-1 : tzdata - LTS security update |