missing security patches

Comments

4 comments

  • Avatar
    Danny Natale

    Yes, please provide an update @Firewalla.  I also sent a scan result.

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    Thank you FF & Danny

    We do push out security updates with different releases if the CVE impacts the core running code. We do actively monitor the various CVE (either from nice customers or from our own research).

    If you are using services that are not the core, you should be able to update to the latest version using the apt tools; and in case if the update didn't work, a reboot should be able to fix everything. 

    I do know we are working on a small script for you to commit the above fix to the base image if needed, once that's ready, will share it here. 

     

    0
    Comment actions Permalink
  • Avatar
    Phil

    @Firewalla, what is the status of this?

    Very concerning that we aren't able to patch the system quickly when it needs to be. Lack of ability to patch also limits your market coverage. Along with that, how do we backup the system to recover to a known good state should something corrupt the system in some fashion?

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    The ability to update your own packages is here https://help.firewalla.com/hc/en-us/articles/4406630307091-How-to-manually-upgrade-Linux-package-on-your-Firewalla-box

    But in general, we do not recommend patching unless you know why the patch needs to be there. 

    0
    Comment actions Permalink

Please sign in to leave a comment.