Patch release notes 2012f
Vyatta NOS patch release notes 2012f.
Released November 15, 2021
Issues resolved
Issues resolved in 2012f.
Issue number |
Priority |
Summary |
---|---|---|
VRVDR-54591 |
Blocker |
TACACS authentications fails when TACACS accounting has a large backlog |
VRVDR-56263 |
Critical |
I2C bus lock and bad SFP |
VRVDR-56220 |
Critical |
PTP: sometimes vyatta-gnssd can't fetch the survey in status |
VRVDR-56188 |
Critical |
bgpd dumps core when setting password for peer group |
VRVDR-56012 |
Critical |
libvirt is receiving no Debian security updates |
VRVDR-55714 |
Critical |
QoS VCI sends dataplane config commands twice without intervening qos <if-name> disable command |
VRVDR-55566 |
Critical |
Fail/reject configuration commits if /config is read-only |
VRVDR-56026 |
Major |
missing .json files reported during booting |
VRVDR-55878 |
Major |
QoS - Mixing Legacy Policy With Mark-Map Configuration and Egress-map (should not be allowed) |
VRVDR-55749 |
Major |
Swapped in SFP doesn't pick up configured MTU |
VRVDR-55570 |
Major |
BGP is not selecting IGP for path selection and using ROUTER-ID |
VRVDR-55011 |
Major |
Can't log into a SIAD with read-only SSD |
VRVDR-54767 |
Major |
Uninitialized value console error when configuring VRRPv3 IPv6 group |
VRVDR-47352 |
Major |
mcast: deleted mroutes are repopoluated when dataplane restarts |
VRVDR-55056 |
Minor |
WRED min and max thresholds must be less than the queue-limit |
Security vulnerabilities resolved
Security vulnerabilities resolved in 2012f.
Issue number | CVSS score | Advisory | Summary |
---|---|---|---|
VRVDR-55993 | 9.8 | CVE-2021-3711, CVE-2021-3712: Debian DSA-4963-1 : openssl - security update | |
VRVDR-56183 | 8.8 | CVE-2020-3702, CVE-2020-16119, CVE-2021-3653, CVE-2021-3656, CVE-2021-3679, CVE-2021-3732, CVE-2021-3739, CVE-2021-3743, CVE-2021-3753, CVE-2021-37576, CVE-2021-38160, CVE-2021-38166, CVE-2021-38199, CVE-2021-40490, CVE-2021-41073: DSA-4978-1: linux – security update | |
VRVDR-55905 | 8.6 | CVE-2020-26558, CVE-2020-27153, CVE-2021-0129: Debian DSA-4951-1 : bluez - security update | |
VRVDR-56315 | 7.5 | CVE-2021-41991: Debian DSA-4989-1: A denial-of-service vulnerability in the in-memory certificate cache was discovered in strongSwan | |
VRVDR-55800 | 7.5 | CVE-2021-36222: Debian DSA-4944-1 : krb5 - security update | |
VRVDR-56453 | 6.5 | CVE-2020-19143: Debian DSA-4997-1 : tiff - security update | |
VRVDR-54808 | 5.9 | CVE-2021-3449: Debian DSA-4875-1 : openssl - security update | |
VRVDR-56405 | 5.3 | CVE-2021-25219: Debian DSA-4994-1 : bind9 - security update | |
VRVDR-55923 | N/A | Debian DSA 4954-1: c-ares security update |