GEO 2.3.40 Release Notes

Refer to the sections below for details about firmware version 2.3.40. This was released on 1st November 2017.

New Features

The following features were added to the 2.3.40 release:

  • Activation Server Local (ASL) LoadMasters have the ability to download Web Application Firewall (WAF) commercial rules and GEO IP blacklist rules.

Issues Resolved

PD-9898

Fixed an issue with configuration corruption that caused some GEO features to not function.

PD-9865

Fixed issues that prevented automatic update of GEO IP blacklist rules.

PD-8227

Fixed an issue preventing the addition of network/addresses in the GEO IP blacklist.

PD-9360

Fixed an issue that caused a crash when restoring a LoadMaster backup with 'Type' All, Base, Base+VS and Base+Geo using the RESTful API.

Known Issues

PD-10980

A critical vulnerability (CVE-2018-9091) in the Multi-Tenant LoadMaster Operating System (MT-LMOS) related to Session Management could allow an unauthorized, remote attacker to bypass security protections, gain system privileges, and execute elevated commands such as ls, ps, cat, and so on, thereby compromising the system. Through this remote execution, in certain cases, exposure of sensitive system data such as certificates, private keys, and other information may be possible.
Further information can be found here: Mitigation For Remote Access Execution Vulnerability.

PD-8725

Proximity and Location Based scheduling do no work with IPv6 source addresses.

PD-9765

GEO does not support DNS TCP requests from unknown sources.

PD-10155

An issue with configuration corruption is causing some GEO features to not function.

PD-10115

There is an issue relating to wildcard FQDNs in GEO.

PD-10096

Sometimes the GEO zone serial is not refreshed, causing a spurious "zone may fail to transfer to slaves" log message.

PD-10124

GEO IP blacklist commercial rule downloads are not working on Multi-Tenant LoadMasters.

Was this article helpful?

0 out of 0 found this helpful

Comments