Date: Wed, 17 Sep 2003 21:15:09 -0500 (EST)
From: ImageStream Support
Subject: Enterprise Linux 4.1.8 for routers available
Version 4.1.8 of ImageStream's Enterprise Linux is now available as an general
availability (GA) release for all ImageStream router customers.
This software release is provided at no charge to all ImageStream customers.
Version 4.1.8 is highly recommended for all customers. VERSION 4.1.8 PROVIDES A
PATCH TO NEW VULNERABILITIES PRESENT IN PREVIOUS ENTERPRISE LINUX RELEASES.
SPECIFICALLY, A NEW VERSION OF SSH IS INCLUDED IN THIS RELEASE.
VERSION 4.1 RELEASES DEPRECATE THE IP-TAKEOVER PACKAGE. CUSTOMERS USING
IP-TAKEOVER MUST USE THE STANDARDS-BASED VRRP IMPLEMENTATION INCLUDED IN 4.1.8.
IP-TAKEOVER IS NO LONGER AVAILABLE IN VERSION 4.1 RELEASES.
This release note documents commands and features added between Version 4.1.7
and Version 4.1.8.
New Features in Version 4.1.8
OpenSSH Upgraded To OpenSSH 3.7.1
The version of OpenSSH included in Version 4.1.8 addresses a recent security
advisory. Version 3.7.1 included with this release patches the September 16,
2003 advisories regarding buffer management and memory out of bounds errors.
No evidence of root exploitability has been found in the buffer management
issue. This release patches this potential issue.
SoftATM And Hardware Timer Scheduling Improved
Version 4.1.8 improves timer handling for cards that support SoftATM, including
600 series T1 cards. The version of SAND included in Version 4.1.8 operates
the 600 series T1 cards at a hardware interrupt level to avoid pre-empting by most
other system events. This near realtime scheduling provides additional protocol
status stability to SoftATM interfaces.
Bugs fixed in Version 4.1.8
The following bugs have been fixed in Version 4.1.8:
SoftATM Protocol Subinterfaces Re-Added Unecessarily
Version 4.1.8 fixes an issue in ImageStream's SoftATM software-based ATM software
that caused PVCs to go down when descriptions or bandwidths were changed. Version
4.1.8 corrects this issue that caused modified PVC's protocol status to be marked
SoftATM Protocol Status Down On New PVCs Corrected
Version 4.1.8 correctly marks protocol status on newly created ATM PVCs up. In
previous versions, PVCs added after the master ATM interface was marked up would
not be activated until the next carrier transition.
Race Condition With 1000 Series ATM Cards Fixed
The version of SAND included in Version 4.1.8 fixes a race condition that could
lead to a kernel panic and shutdown of a router. This race condition only
exists under multi-processor Enterprise Routers or Gateway 64 routers, and any
Gateway, Gateway 64 or Enterprise uniprocessor router with a Hyperthreaded main