Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

GEO 2.3.41.2 Release Notes

Refer to the sections below for details about firmware version 2.3.41.2. This was released on 23rd March 2018.

Issues Resolved

PD-10980

Previously, a critical vulnerability (CVE-2018-9091) in the LoadMaster Operating System (LMOS) related to Session Management could allow an unauthorized, remote attacker to bypass security protections, gain system privileges, and execute elevated commands such as ls, ps, cat, and so on, thereby compromising the system. Through this remote execution, in certain cases, exposure of sensitive system data such as certificates, private keys, and other information may be possible.
Now, this vulnerability has been mitigated against with more stringent security checks. Further information can be found here: Mitigation For Remote Access Execution Vulnerability.

Known Issues

PD-9765

GEO does not support DNS TCP requests from unknown sources.

PD-10586

If a GEO FQDN is configured with All Available as the Selection Criteria, IPs are returned even if the cluster is disabled.

PD-10155

An issue with configuration corruption is causing some GEO features to not function.

PD-8725

Proximity and Location Based scheduling do not work with IPv6 source addresses.

PD-8853

Location Based failover does not work as expected.


Comments