首页-> 服务与支持-> 客户支持-> 售后服务

服务与支持

网络入侵防护系统(IPS)引擎5.6.8升级包列表

名称: eoi.agentpatch.5.6.8.58.bin 版本:5.6.8.58
MD5:6800ab24ac550a82b62d47bdbb40cc9a 大小:34.14M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.58。

本升级包新增/改进功能:
完善系统功能

注意事项:
1、本升级包升级过程不会影响设备当前配置。
2、本升级包升级完成后会自动重启引擎,请选择合适的时间进行设备升级。
3、本升级包升级完成后需要手动刷新WEB页面。
4、如果是从低于5.6.8.50的版本进行升级或升级5.6.8.50后未手动重启设备,需要手动重启。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and the engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.58.

New or Improved Functions in This Upgrade Package:
Improving the function of the system

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts. Please perform the upgrade at a appropriate time..
3.After the upgrade is completed, you need to manually refresh the web page of the web-based manager.
4.If version is less than 5.6.8.50 and not restarted when upgrated to 5.6.8.50,manual restart is needed.

发布时间:2018-05-25 09:27:33
名称: eoi.agentpatch.5.6.8.57.bin 版本:5.6.8.57
MD5:0c35abdaad72cd08b8a999a7b95e8a2b 大小:34.10M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.57。

本升级包新增/改进功能:
Web增强

注意事项:
1、本升级包升级过程不会影响设备当前配置。
2、本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。
3、本升级包升级完成后需要手动刷新WEB页面。
4、如果是从低于5.6.8.50的版本进行升级或升级5.6.8.50后未手动重启设备,需要手动重启。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and the engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.57.

New or Improved Functions in This Upgrade Package:
Improvement in Web.

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time..
3.After the upgrade is completed, you need to manually refresh the web page of the web-based manager.
4.If version is less than 5.6.8.50 and not restarted when upgrated to 5.6.8.50,manual restart is needed.

发布时间:2016-11-10 14:47:50
名称: eoi.agentpatch.5.6.8.56.bin 版本:5.6.8.56
MD5:5e1a82ac55fee54d53d5f97b61d78e1c 大小:34.11M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.56。

本升级包新增/改进功能:
1.安全性问题修复
2.稳定性问题修复

注意事项:
1、本升级包升级过程不会影响设备当前配置。
2、本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。
3、本升级包升级完成后需要手动刷新WEB页面。
4、如果是从低于5.6.8.50的版本进行升级或升级5.6.8.50后未手动重启设备,需要手动重启。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and the engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.56.

New or Improved Functions in This Upgrade Package:
1.Security bug fixes
2.Stability bug fixes

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time..
3.After the upgrade is completed, you need to manually refresh the web page of the web-based manager.
4.If version is less than 5.6.8.50 and not restarted when upgrated to 5.6.8.50,manual restart is needed.

发布时间:2016-11-03 18:14:51
名称: eoi.agentpatch.5.6.8.55.bin 版本:5.6.8.55
MD5:2292e3235d4a4e55fa4e1f46b6bd0f8b 大小:34.05M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.55。

本升级包新增/改进功能:
Openssl版本升级到1.0.1u,修复以下漏洞:
1.CVE-2016-6304
2.CVE-2016-6305
3.CVE-2016-2183
4.CVE-2016-6303
5.CVE-2016-6302
6.CVE-2016-2182
7.CVE-2016-2180
8.CVE-2016-2177
9.CVE-2016-2178
10.CVE-2016-2179
11.CVE-2016-2181
12.CVE-2016-6306
13.CVE-2016-6307
14.CVE-2016-6308

注意事项:
1、本升级包升级过程不会影响设备当前配置。
2、本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。
3、本升级包升级完成后需要手动刷新WEB页面。
4、如果是从低于5.6.8.50的版本进行升级或升级5.6.8.50后未手动重启设备,需要手动重启。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and the engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.55.

New or Improved Functions in This Upgrade Package:
Openssl upgrades to 1.0.1u and several security fixes:
1.CVE-2016-6304
2.CVE-2016-6305
3.CVE-2016-2183
4.CVE-2016-6303
5.CVE-2016-6302
6.CVE-2016-2182
7.CVE-2016-2180
8.CVE-2016-2177
9.CVE-2016-2178
10.CVE-2016-2179
11.CVE-2016-2181
12.CVE-2016-6306
13.CVE-2016-6307
14.CVE-2016-6308

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time..
3.After the upgrade is completed, you need to manually refresh the web page of the web-based manager.
4.If version is less than 5.6.8.50 and not restarted when upgrated to 5.6.8.50,manual restart is needed.

发布时间:2016-09-23 18:12:49
名称: eoi.agentpatch.5.6.8.54.bin 版本:5.6.8.54
MD5:28bc48230d43584537f64db6335c3e6a 大小:34.11M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.54。

本升级包新增/改进功能:
完善数通引擎;
完善安全引擎;
WEB优化;
提高系统稳定性;
增强设备安全性。

注意事项:
1、本升级包升级过程不会影响设备当前配置。
2、本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。
3、本升级包升级完成后需要手动刷新WEB页面。
4、如果是从低于5.6.8.50的版本进行升级或升级5.6.8.50后未手动重启设备,需要手动重启。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and the engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.54.

New or Improved Functions in This Upgrade Package:
Enhancement in datacom engine;
Enhancement in security engine;
Improvement in Web optimization;
Improvement in OS stability;
Increasing the device safety;

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time..
3. After the upgrade is completed, you need to manually refresh the web page of the web-based manager.
4. If version is less than 5.6.8.50 and not restarted when upgrated to 5.6.8.50,manual restart is needed.

发布时间:2016-08-24 11:22:02
名称: eoi.agentpatch.5.6.8.52.bin 版本:5.6.8.52
MD5:868c97fbb584aeaba7c965479d0578a8 大小:35.42M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.52。

本升级包新增/改进功能:
Openssl版本升级到1.0.1t,修复以下漏洞:
1、Memory corruption in the ASN.1 encoder (CVE-2016-2108)
2、Padding oracle in AES-NI CBC MAC check (CVE-2016-2107)
3、EVP_EncodeUpdate overflow (CVE-2016-2105)
4、EVP_EncryptUpdate overflow (CVE-2016-2106)
5、ASN.1 BIO excessive memory allocation (CVE-2016-2109)
6、EBCDIC overread (CVE-2016-2176)

注意事项:
1、本升级包升级过程不会影响设备当前配置。
2、本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。
3、本升级包升级完成后需要手动刷新WEB页面。
4、如果是从低于5.6.8.50的版本进行升级或升级5.6.8.50后未手动重启设备,需要手动重启。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and the engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.52.

New or Improved Functions in This Upgrade Package:
Openssl upgrades to 1.0.1t and several security fixes:
1.Memory corruption in the ASN.1 encoder (CVE-2016-2108)
2.Padding oracle in AES-NI CBC MAC check (CVE-2016-2107)
3.EVP_EncodeUpdate overflow (CVE-2016-2105)
4.EVP_EncryptUpdate overflow (CVE-2016-2106)
5.ASN.1 BIO excessive memory allocation (CVE-2016-2109)
6.EBCDIC overread (CVE-2016-2176)

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time..
3. After the upgrade is completed, you need to manually refresh the web page of the web-based manager.
4. If version is less than 5.6.8.50 and not restarted when upgrated to 5.6.8.50,manual restart is needed.

发布时间:2016-05-05 19:23:23
名称: eoi.agentpatch.5.6.8.50.bin 版本:5.6.8.50
MD5:0cff8748e18b1ed9d97fdf524c8583b0 大小:35.41M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.50。

本升级包新增/改进功能:
1、新增功能:双内核机制。
2、完善USB升级。
3、完善安全引擎。
4、完善HA功能。
5、修复ssl Certificate Signed Using Weak Hashing Algorithm漏洞。
6、WEB优化。

注意事项:
1、本升级包升级过程不会影响设备当前配置。
2、本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。
3、本升级包升级完成后,若要使双内核机制生效,需要手动重启设备。
4、本升级包升级完成后需要手动刷新WEB页面。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and the engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.50.

New or Improved Functions in This Upgrade Package:
1.new function:two kernel mechanism.
2.enhancement in updating by USB.
3.enhancement in security engine.
4.enhancement in HA.
5.fix ssl Certificate Signed Using Weak Hashing Algorithm vulnerability.
6.improvement in Web optimization.

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time.
3.When the upgrade is completed, and you wanted to make two kernel mechanism to take effect, please reboot the device manually.
4. After the upgrade is completed, you need to manually refresh the web page of the web-based manager.

发布时间:2016-01-12 13:02:46
名称: eoi.agentpatch.5.6.8.47.bin 版本:5.6.8.47
MD5:8fbb74cf923c1ed62cc3002a2f932f76 大小:28.34M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.47。

本升级包新增/改进功能:
1.修复PHP multipart/form-data头部解析远程拒绝服务漏洞。
2.增强安全引擎稳定性。
3.web界面优化。

注意事项:
1.本升级包升级过程不会影响设备当前配置;
2.本升级包升级完成后会自动重启引擎,请选择合适的时间进行设备升级。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.47.

New or Improved Functions in This Upgrade Package:
1.fix PHP multipart/form - data parsing head remote denial of service vulnerability
2.Improvement in Security Engine stability.
3.Improvement in Web optimization.

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts. Please perform the upgrade at a appropriate time.

发布时间:2015-06-09 15:52:20
名称: eoi.agentpatch.5.6.8.46.bin 版本:5.6.8.46
MD5:bdf263771727f9e1713e0fb3208cf8e1 大小:3.22M
描述:

本升级包为紧急升级包,支持在固件版本为5.6.8.21,引擎版本在5.6.8.45标准版本(非定制版本)基础上进行升级。本升级包为增量升级包,升级后固件版本不变,引擎版本变更为5.6.8.46。


本升级包新增/改进功能:
1.修复PHP multipart/form-data头部解析远程拒绝服务漏洞。

注意事项:
1.本升级包升级过程不会影响设备当前配置;

This is an emergency upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and engine version of 5.6.8.45. This upgrade package is incremental. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.46.

New or Improved Functions in This Upgrade Package:
1. fix PHP multipart/form - data parsing head remote denial of service vulnerability

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.

发布时间:2015-05-22 16:33:30
名称: eoi.agentpatch.5.6.8.45.bin 版本:5.6.8.45
MD5:f2a15c3617beb3fab018c8e87d6d0553 大小:25.09M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.45。

本升级包新增/改进功能:
1.增强外置bypass功能;
2.增强安全引擎稳定性。

注意事项:
1.本升级包升级过程不会影响设备当前配置;
2.本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.45.

New or Improved Functions in This Upgrade Package:
1.Improvement in extern bypass;
2.Improvement in Security Engine stability.

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time.

发布时间:2015-04-30 14:44:37
名称: eoi.agentpatch.5.6.8.44.bin 版本:5.6.8.44
MD5:866ff4603aa4ce677f3c1373f7c0b2af 大小:25.09M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.44。

本升级包新增/改进功能:
1.更新对接口收发包,接口连接状态异常检测功能;
2.新增外置bypass自动回切功能。此功能生效需在界面配置外置bypass接口对,详见相关文档。

注意事项:
1.本升级包升级过程不会影响设备当前配置;
2.本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.44.

New or Improved Functions in This Upgrade Package:
1. Improve interface packets sending/receving detection and external bypass switch feature.
2.Add extern bypass switch back to normal automatically.

Notes:
1.When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2.When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time.

发布时间:2015-02-13 17:19:44
名称: eoi.agentpatch.5.6.8.43.bin 版本:5.6.8.43
MD5:8a6277880c194947ef10a4ab7732e793 大小:25.07M
描述:

5.6.8.43引擎升级包

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.43。

本升级包新增/改进功能:
1.新增对接口收发包的检测和切换外置bypass功能:引擎升级成功后,如想此功能生效,需要手动配置与外置bypass交换机联动的接口对,并点击“应用”按钮生效,详见相关文档说明。
2.暴力猜测参数和IPS关联问题的改动
3.新增syslog安全日志开关
4.修复如下Openssl漏洞:
- Openssl dtls1_get_record函数拒绝服务(CVE-2014-3571)
- Openssl DTLS内存泄漏漏洞(CVE-2015-0206)
- No-SSL3配置集方法空指针(CVE-2014-3569)
- ECDHE客户端协商降级ECDH (CVE-2014-3572)
- RSA客户端协商降级EXPORT_RSA(CVE-2015-0204)
- 服务器验证客户DH信息不全(CVE-2015-0205)
- 证书指纹可以被修改(CVE-2014-8275)
- BIGNUM平方可能会产生不正确的结果(CVE-2014-3570)
5.增强SNMP功能

注意事项:
1.本升级包升级过程不会影响设备当前配置;
2.本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级;
3.本升级包升级完成后需要手动刷新网页。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.43.

New or Improved Functions in This Upgrade Package:
1.Implement interface packets sending/receiving detection and external bypass switch feature : To make this feature work after engine update, the user should configure the interface pair link to external bypass switch manually, then click the "Apply" button to take effect. Please refer to the documents for more information.
2.Improve the brute guess feature
3.Implement security syslog switch feature
4.Fixed following Openssl vulnerabilities:
- CVE-2014-3571:DTLS segmentation fault in dtls1_get_record
- CVE-2015-0206:DTLS memory leak in dtls1_buffer_record
- CVE-2014-3569:no-ssl3 configuration sets method to NULL
- CVE-2014-3572:ECDHE silently downgrades to ECDH [Client]
- CVE-2015-0204:RSA silently downgrades to EXPORT_RSA [Client]
- CVE-2015-0205:DH client certificates accepted without verification [Server]
- CVE-2014-8275:Certificate fingerprints can be modified
- CVE-2014-3570:Bignum squaring may produce incorrect results
5.Improve SNMP feature

Notes:
1. When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2. When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time.
3. After the upgrade is completed, you need to manually refresh web page as the Apache would restart automatically.

发布时间:2015-02-04 14:17:45
名称: eoi.agentpatch.5.6.8.38.bin 版本:5.6.8.38
MD5:a507ff2a94b2f2966c97bef0be79b1c1 大小:22.59M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.38。

本升级包新增/改进功能:
1.完善数通引擎在个别情况下不稳定问题
2.完善对IE浏览器兼容性的支持
3.WEB界面优化

注意事项:
1.本升级包升级过程不会影响设备当前配置;
2.本升级包升级完成后会自动重启引擎,会导致通过设备的会话中断,请选择合适的时间进行设备升级;
3.本升级包升级完成后需要手动重启系统生效。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.38.

New or Improved Functions in This Upgrade Package:
1.Improve Datacom engine instability in individual cases;
2.Improve the support for IE browser compatibility
3.Improvement in Web optimization.

Notes:
1. When this upgrade package is applied to a device, the upgrade process does not affect configurations existing on the device.
2. When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time.
3. After the upgrade is completed, you need to manually reboot the system to take effect.

发布时间:2014-10-28 16:03:24
名称: eoi.agentpatch.5.6.8.37.bin 版本:5.6.8.37
MD5:6b2cf0b8b4a5109064cd355b9a92db39 大小:18.75M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.37。

本升级包新增/改进功能:
1.修复bash环境变量远程命令执行漏洞(CVE-2014-7169)
2.修复bash环境变量远程命令执行漏洞(CVE-2014-6271)
3.修复SSL 3.0 POODLE攻击信息泄露漏洞(CVE-2014-3566)

注意事项:
1.本升级包升级过程不会影响设备当前任何配置;
2.本升级包升级完成后自动重启引擎生效,会导致通过设备的会话中断,请选择合适的时间进行设备升级;
3.本升级包升级完成后需要手动刷新WEB页面。

This is an engine upgrade package, which can be used to perform upgrade based on standard (non-customized) devices with the firmware version of 5.6.8.21 and engine version of 5.6.8.21 and later. This upgrade package covers previously released patches. After upgrade, the firmware version remains unchanged, but the engine version is updated to 5.6.8.37.

New or Improved Functions in This Upgrade Package:
1.Fix of "remote code execution through bash(CVE-2014-6271)"
2.Fix of "remote code execution through bash(CVE-2014-7169)"
3.Fix of "POODLE attacks on SSLv3(CVE-2014-3566 )"

Notes:
1. When this upgrade package is applied to a device, the upgrade process does not affect any configurations existing on the device.
2. When the upgrade is completed, the engine automatically restarts, which will interrupt sessions going through the device. Please perform the upgrade at a appropriate time.
3. After the upgrade is completed, you need to manually refresh the web page of the web-based manager.

发布时间:2014-10-18 14:31:11
名称: eoi.agentpatch.5.6.8.33.bin 版本:5.6.8.33
MD5:714e2662380731be7b68926ce8abdddb 大小:17.55M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.33。

本升级包新增/改进功能:
--修复OpenSSL SSL/TLS MITM 漏洞 (CVE-2014-0224)
--修复OpenSSL dtls1_get_message_fragment函数拒绝服务漏洞 (CVE-2014-0221)
--修复OpenSSL DTLS无效片段漏洞 (CVE-2014-0195)
--修复OpenSSL 'so_ssl3_write()'函数空指针间接引用拒绝服务漏洞(CVE-2014-0198)
--修复SSL_MODE_RELEASE_BUFFERS会话注入或拒绝服务漏洞(CVE-2010-5298)
--修复OpenSSL 匿名ECDH拒绝服务漏洞 (CVE-2014-3470)
--修复bug:(CVE-2014-0076)

注意事项:
1.本升级包升级过程不会影响设备当前任何配置;
2.本升级包升级完成后自动重启引擎生效,会导致通过设备的会话中断,请选择合适的时间进行设备升级;
3.本升级包升级完成后需要手动刷新WEB页面。

1.fix SSL/TLS MITM vulnerability (CVE-2014-0224)
2.fix DTLS recursion flaw (CVE-2014-0221)
3.fix DTLS invalid fragment vulnerability (CVE-2014-0195)
4.fix SSL_MODE_RELEASE_BUFFERS NULL pointer dereference (CVE-2014-0198)
5.fix SSL_MODE_RELEASE_BUFFERS session injection or denial of service (CVE-2010-5298)
6.fix Anonymous ECDH denial of service (CVE-2014-3470)
7.fix bug:(CVE-2014-0076)

发布时间:2014-06-10 13:28:25
名称: eoi.agentpatch.5.6.8.32.bin 版本:5.6.8.32
MD5:b60f2236f72c3f9ffc3600ee7d83b3eb 大小:17.52M
描述:

本升级包为引擎升级包,支持在固件版本为5.6.8.21,引擎版本为5.6.8.21及其以后的所有标准版本(非定制版本)基础上进行升级。本升级包为全量升级包,升级后固件版本不变,引擎版本变更为5.6.8.32。
该升级包新增/改进的功能有:
1.增加规则[10363]ACK-Flood拒绝服务攻击;
2.增加规则[10364]PSH-ACK-Flood拒绝服务攻击;
3.增加端口镜像转发功能;
4.更新SQL注入白名单功能;
5.更新IMAP协议解码器;
6.WEB界面优化。

注意事项:
1.本升级包升级过程不会影响设备当前任何配置;
2.本升级包升级完成后自动重启引擎生效,会导致通过设备的会话中断,请选择合适的时间进行设备升级;
3.本升级包升级完成后需要手动刷新WEB页面。




1.Add[10363]ACK-Flood Denial of Service;
2.Add[10364]PSH-ACK-Flood Denial of Service;
3.Add Port Mirroring Forwards Function;
4.Update SQL Injection Whitelist;
5.Update of the IMAP Decoder;
6.Improvement in Web optimization.

发布时间:2014-06-03 14:04:37
名称: eoi.agentpatch.5.6.8.27.bin 版本:5.6.8.27
MD5:2ef52d01ce306f8d34c8b9658b302df5 大小:18.22M
描述:

本升级包支持在固件版本V5.6.8.21的基础上进行升级,升级后刷新页面即可。
本升级包新增/改进功能:
1、修复OpenSSL TLS心跳扩展协议包远程信息泄露漏洞 (CVE-2014-0160)。

fix openssl-heartbleed Vulnerability(CVE-2014-0160).

发布时间:2014-04-13 17:18:46
名称: eoi.agentpatch.5.6.8.25.bin 版本:5.6.8.25
MD5:7a7d6714c682bc706140c5ea2298e061 大小:16.99M
描述:

1.增强用户认证功能;
2.增强app功能;
3.增强flood攻击检测功能;
4.增强日志功能;
5.增强CDN环境支持。

1.consolidating user authentication function;
2.improving app function;
3.improving the ability of flood attack detection;
4.enhancing the function of log record;
5.strengthening CDN environmental support.

发布时间:2013-11-07 09:19:17