2018-11-08

Intra2net Software Update 6.5.0

Support for free SSL certificates from Let's Encrypt

• SSL certificates from Let's Encrypt are trusted and simplify and simplify the setup of ActiveSync on iOS and Android
• Easy creation of SSL certificates in a few steps
• Automatic renewal of SSL certificates every 60 days

Updating simple firewall profiles for providers

• New option "Incoming HTTP connections" exclusive for Let's Encrypt validation
• SSH command line access option removed. Profiles using this option are converted to full firewall rule lists

More improvements

• Office attachment filter now detects encrypted Office files
• Security hardening of URL forwarding in the user interface
• Firmware for the LED display of the Intra2net Appliance Eco and Intra2net Appliance Pro updated
• Documentation of the LED states in the Administrator Manual
• Updating the bootloader to grub2. The existing boot loader is still available as a backup

Cumulative security update fixes 25 vulnerabilities

• (ImageMagick-7.0.8-12, cabextract-1.9, curl-7.62.0: CVE-2018-14618, elfutils-0.174: CVE-2018-16062, CVE-2018-16402 and CVE-2018-16403, gd-2.2.5: CVE-2018-1000222, ghostscript-9.25: CVE-2018-16509, CVE-2018-16510, CVE-2018-16511, CVE-2018-16513, CVE-2018-16539, CVE-2018-16540, CVE-2018-16541, CVE-2018-16542, CVE-2018-16543, CVE-2018-16585, CVE-2018-16802 and CVE-2018-17183, net-snmp-5.7.3: CVE-2018-18065, openssh-7.9p1: CVE-2018-15473, poppler-0.71.0, strongswan-4.5.0: CVE-2018-16151, CVE-2018-16152 and CVE-2018-17540)

Updating Linux Basic Services

• (apr-1.6.5, apr-util-1.6.1, bind-9.11.4-P2, file-5.35, httpd-2.4.37, lnav-0.8.4, python-oletools-0.53.1, rsyslog-8.38.0, samba-4.7.11, tmux-2.8)

Back to overview