WatchGuard has posted Fireware XTM OS 11.3.7 for e-Series and 11.6.7 for XTM 21/22/23 appliances. Along with providing significant bug fixes, these releases enable Commtouch as the anti spam solution provider. Both releases also include a fix for the buffer overflow vulnerability reported last week at WatchGuard Security Center. The Release Notes provide a complete list of all issues resolved in each software release.
Note: There is no corresponding update to WSM.
Does This Release Pertain to Me?
Customers with an XTM 21/21-W, 22/22-W, or 23/23-W appliance should upgrade to version 11.6.7. Customers with e-Series appliances should upgrade to 11.3.7.
Please read the 11.6.7 Release Notes and the 11.3.7 Release Notes before you upgrade, to understand what’s involved.
Note: These updates do not apply to customers with XTM 25 or higher appliances.
How Do I Get the Release?
XTM appliances owners who have a current LiveSecurity Service subscription can obtain this update without additional charge by downloading the applicable packages from the Articles & Support section of WatchGuard’s Support Center. To make it easier to find the relevant software, be sure to uncheck the “Article” and “Known Issue” search options, and press the Go button.
If you need support, please enter a support incident online or call our support staff directly. (When you contact Technical Support, please have your registered Product Serial Number, LiveSecurity Key, or Partner ID available.)
- U.S. End Users: 877.232.3531
- International End Users: +1.206.613.0456
- Authorized WatchGuard Resellers: +1.206.521.8375
Don’t have an active LiveSecurity subscription for your XTM appliance? It’s easy to renew. Contact your WatchGuard reseller today. Find a reseller»
Just upgraded a couple devices which went smooth as usually. Any idea when the forum will be back up and running?
Corey Nachreiner says
I wasn’t aware the forum was down. I can ask support.
Seems like it’s been down for a couple weeks. I’ve asked support, asked on twitter, and now asking you. Hopefully it gets fixed as I like products that have a user community.
Does the 11.3.7 update for e-Series appliances address the SSL/TLS renegotiation DoS vulnerability (CVE-2011-1473)?
Corey Nachreiner says
John… I wasn’t aware of that one being part of this release… should be an older one?
I was under the impression that this is not yet fixed where hardware (e-Series) dictates 11.3.x is the latest available code. I know it’s been fixed for other hardware platforms.