Release 2.1.1

Firmware security update. Earlier this week, on Feb 16, the news broke about CVE-2015-7547, a glibc bug in DNS resolving that could potentially lead to remote code execution.

This is a critical update, however it's partially mitigated by some factors in our system:

  • Our system does not edns0
  • ASLR (address space layout randomization) turns the execution into a local crash rather than easy code execution.

We have released an extra out-of-band update for our devices that include this fix.

Release 3.8

Release 3.7