Smoothwall UTM Patch List – Base Operating System

Below is a complete list of all patches including those shipped with base ISO for Smoothwall UTMs.

We have found this information hard to find without logging into a system which already has them installed, so here is the complete list!

There are 51 Updates in total, as of 3 Apr 2013.

Provident are a Smoothwall Gold Partner, and provide Enterprise level support to Smoothwall Systems Globally.  We have offices in London, Dublin, Munich, and Vienna.

If you need assistance with installing patches on your Smoothwall system or would like support beyond what the vendor can provide – please contact us: sales@providentit.com or ph: +44 161 660 2996

main : Update 1
This update upgrades ClamAV to version 0.92.1, upgrades the kernel to version 2.6.16.60, and addresses several issues:

  • “No repeat” scheduled reports repeating each hour
  • Traffic stats report may not show client IPs with highest bandwidth usage
  • Cannot view help files in non-English web browsers
  • Failure to migrate hardware failover settings from previous versions
  • Failure to apply settings related to port groups containing port ranges
  • “Disk usage” section on dashboard rendering full partitions incorrectly
  • Log database reliability improvements
Released: Mon Mar 31 09:25:00 2008   Status: Installed:with UTM 1000 Series
main : Update 2
This update addresses a number of issues:

  • High loading times for the dashboard with Zap and/or Guardian installed
  • Traffic stats report erroneously lists Traffic classes and rules as interfaces
  • VLAN interfaces are disabled after a reboot
  • L2TP connections stop passing traffic when heavily used

The update also includes the IGB Intel gigabit ethernet NIC driver.

Released: Tue May 20 09:25:00 2008   Status: Installed:with UTM 1000 Series
main : Update 3
This update upgrades ClamAV to version 0.93.1, and addresses issues related to applying updates to a slave in a master/slave failover setup.
Released: Thu Jun 19 09:25:00 2008   Status: Installed:with UTM 1000 Series
main : Update 4
This update adds the following new features:

  • User portal
    • Allow selected users and groups to log in to the system and retrieve customized content, including report generation and viewing
  • Reporting changes
    • Grouping of report sections, with common options configurable for groups as a whole
    • Specification of start and end times in addition to dates in certain report sections
    • Editing of existing report templates
    • Automatic “publishing” of generated reports to user portals
  • Message Censor
    • New text matching service with flexible, policy-based configuration and misspelt word matching
    • Replaces static word matching in IM, with planned future support in more modules
  • HDD health monitoring report
  • Improvements to realtime traffic graphs
  • “Todo list” on the main page containing common configuration tasks
  • Dashboard performance improvements

Also, the following issues have been addressed:

  • Prevent browsers from auto-completing username & password fields with undesirable information
  • Report names missing from PDF format reports
  • Improvements to the report creation page
  • Re-order items on the “information” menu to improve usability
  • Improve appearance of welcome text on the login page

Caution: Applying this update may result in corruption of existing user-created report templates. Please check and repair your templates as necessary after installation.

Note: This update will clear the logging database. Please consult your system’s documentation for more information.

Released: Thu Jul 17 09:25:00 2008   Status: Installed:with UTM 1000 Series
main : Update 5
This update upgrades ClamAV to version 0.93.3, and upgrades dnsmasq to version 2.45 to address a theoretical DNS vulnerability.
Released: Tue Aug 12 09:25:00 2008   Status: Installed:with UTM 1000 Series
main : Update 6
This update addresses the following issues:

  • Failure to bring up subnet routes with gateways that are only accessible via internal aliases
  • Action not correctly set when editing MessageCensor policies
  • Minor data display issues with the SMART status report
  • Users logged out of slave machine web interface during replication in a master/slave setup
  • Realtime traffic graphs not updating in Internet Explorer
  • Unable to change report database username/password

Additionally, the following packages have been upgraded:

  • Apache
  • Squid
  • OpenSSH
  • Kernel
  • ClamAV
  • Bzip
Released: Mon Nov 3 09:25:00 2008   Status: Installed:with UTM 1000 Series
main : Update 7
This update contains a number of enhancements to the logging database for improving reporting performance.Please note: after installing this update, and then rebooting, you can optionally migrate your old Guardian report data in to the newer, faster, format. All new data generated after installing this update will be stored in the new format. Old data will not appear in the reports unless you migrate it. For more information please contact support.
Please note: after installing this update, existing database backups will no longer be compatible.
Released: Fri Jan 16 09:25:00 2009   Status: Installed:with UTM 1000 Series
main : Update 8
This update addresses the following issues:

  • AV signature update failures when an upstream proxy is in use
  • Bandwidth usage on external connection not displayed on LCD panel of hardware appliances
  • Updated list of available NTP servers
  • Prevent spurious DNS requests from Windows machines from reaching the WAN
  • Update ClamAV to version 0.94.2
  • Update OpenSSL to 0.9.8j
Released: Tue Feb 10 09:25:00 2009   Status: Installed:with UTM 1000 Series
main : Update 9
This update addresses the following issues:

  • Realtek R80101 support
  • 3ware RAID controller support
  • Weekly scheduled reports not generated
Released: Mon Mar 30 09:25:00 2009   Status: Installed:with UTM 1000 Series
main : Update 10
This update addresses the following issues:

  • Ref: 238 The information displayed in log pages has been made clearer.
  • Ref: 274 To improve usability, default archives are now protected from deletion.
  • Ref: 723 A spelling mistake on the configuration tests page has been corrected.
  • Ref: 763 Remote database settings are now preserved and migrated when reinstalling.
  • Ref: 901 A problem displaying pie charts in PDF reports has been corrected.
  • Ref: 903 A problem displaying long table cells in PDF reports has been corrected.
  • Ref: 908 Occasionally, when creating a report folder, two folders were created. This has now been resolved.
  • Ref: 909 A stray apostrophe at top of the updates page has been removed.
  • Ref: 910 All updates are completely downloaded before you can start installing them.
  • Ref: 918 Diagnostic tools have been updated.
  • Ref: 927 The system now supports the Intel 82574L PCI express gigabit card.
  • Ref: 935 Scheduled reports now carry section settings forward.
  • Ref: 937 Repeating report settings are now included in nested reports.
  • Ref: 957 ClamAV has been updated to version 0.95.1.
  • Ref: 945 1000-UTM has been renamed UTM-1000 and its graphics have been updated.
  • Ref: 959 A driver conflict with the system running on certain IBM x3650 servers has been corrected.
  • Ref: 1001 The registration process has been made more robust to handle temporary network issues better.
Released: Tue Jun 2 09:25:00 2009   Status: Installed:with UTM 1000 Series
main : Update 11
This update contains the following:

  • Three new options on the information » settings » database backup page which enhance management of report data.
  • A new report, Reporting database health, in the system section of the information » reports » reports page. This report estimates disk space usage per day, approximately how much disk space is currently used and database pruning information.
Released: Mon Jul 6 09:25:00 2009   Status: Installed:with UTM 1000 Series
main : Update 12
This update addresses the following:

  • Ref: 974 At hardware failover, the correct external connection status is now shown.
  • Ref: 989 An issue when returning extended information has been resolved.
  • Ref: 1020 When resetting admin access on an appliance, the correct configuration rule is now generated.
  • Ref: 1065 Improved registration information detailing all PCI buses and devices in the system has been added.
Released: Tue Aug 4 09:25:00 2009   Status: Installed:with UTM 1000 Series
main : Update 13
This update introduces performance and rendering improvements to the reporting system.
Released: Mon Nov 2 09:25:00 2009
main : Update 14
This update includes, addresses or resolves the following:

  • New – Network Time Protocol is now enabled by default, time is synchronized on boot and the latest NTP list is included
  • Ref: 778 3ware support has been updated
  • Ref: 836 Traffic statistics are now reset after reboot
  • Ref: 914 A display issue when drilling down in Internet Explorer 7 has been resolved
  • Ref: 1021 OpenSSH has been updated from 5.1p1 to 5.2p1
  • Ref: 1051 The Intel IGB driver has been updated to 1.3.19.3
  • Ref: 1178 An issue with automated fsck has been resolved
  • Ref: 1126 DNS improvements have been made
  • Ref: 1079 The TG3 driver has been updated
  • Ref: 1210 An issue when inserting scripts into generated HTML has been resolved
  • Ref: 1216 An issue when using Internet Explorer on the unblock page has been resolved
  • Ref: 1265 The Broadcom Netextreme 10GB PCIE NIC driver has been updated
Released: Tue Nov 3 09:25:00 2009
main : Update 15
This update includes, addresses or resolves the following:

  • Ref 1406 – OpenSSL has been updated.
  • Ref 1423 – On appliances, the Enter button can now be used to advance the display of information when the LCD is in idle mode.
Released: Wed Jan 13 09:25:00 2010
main : Update 16
This update includes, addresses or resolves the following:

  • New – Functionality to support improvements in the intrusion system service
  • Ref 1395 – Issue with tool tips resolved
Released: Mon Feb 1 09:25:00 2010
main : Update 17
This update includes, addresses or resolves the following:

  • New – Changes to support rendering improvements in the services > ids > policy page
Released: Mon Feb 22 09:25:00 2010
main : Update 19
This update includes, addresses or resolves the following:

  • Ref 1878 – reduce the use of fallback mode when importing log lines
Released: Tue May 4 09:25:00 2010
main : Update 18
This update includes, addresses or resolves the following:

  • New – Improved concurrency handling when running multiple database scrapers
  • New – Improved database performance and resilience
  • Ref 1144 – failback mode has been made more robust
  • Ref 1145 – an issue with log rotation on slave machines has been resolved
  • Ref 1300 – an issue with portal log rotation has been resolved
  • Ref 1307 – memory resource management when restoring database backups has been improved
  • Ref 1343 and 1344 – potential issues with updates to the meta table during database transactions have been resolved
  • Ref 1362 – global HTTPD directories are no longer listable
  • Ref 1375 – an issue when blocking a network range of destination IPs has been resolved
  • Ref 1393 – a compatibility issue between the SSL-OpenVPN client and Windows 7 has been resolved
  • Ref 1434 – traffic graph images are now included in emailed reports
  • Ref 1476 – new option “Retain Database logs” available on the information > logs > log settings page enables better troubleshooting
  • Ref 1477 – unnecessary messages are no longer displayed on the console when restarting the database
  • Ref 1533 – a page display issue in Internet Explorer 8 has been resolved
  • Ref 1613 – advanced warning of high disk usage has been added to the UI
  • Ref 1719 – a data issue, after restoring a database, has been resolved
  • Ref 1721 – the information message displayed when restoring a database has been improved
  • Ref 1723 – the progress bar displayed when restoring a database has been improved
  • Ref 1801 – an issue with exceptionally long URLs has been resolved
Released: Tue May 4 09:25:00 2010
main : Update 20
This update includes, addresses or resolves the following:

  • Ref 993 – an issue listing Certificate Authorities has been resolved
  • Ref 1011 – older NIC drivers (NE1000/NE2000 (non-PCI) “ne” and ICL EtherTeam 16i/32 “eth16i”) which caused install issues have been removed
  • Ref 1123 – PCI Utilities has been upgraded to 3.1.5
  • Ref 1215 – the SSL service no longer allows SSL V2; SSL V3 and TLSv1 are allowed
  • Ref 1382 – an issue when importing a certificate issued by another CA has been resolved
  • Ref 1461 – unnecessary text is no longer displayed on the serial console when installing on-line help
  • Ref 1954 – rendering issues when using Internet Explorer 8 have been resolved
Released: Sun Jun 6 09:25:00 2010
main : Update 21
This update includes, addresses or resolves the following:

  • Ref 1092 – An issue when loading settings from a USB disk has been resolved.
  • Ref 1105 – Replication schedules are no longer run on inactive failover slave systems.
  • Ref 1114 – The EHCI USB driver is now supported.
  • Ref 1133 – An issue generating reports while the database is shut down has been resolved.
  • Ref 1202 – An issue which caused some options to be incorrectly displayed after installing updates has been resolved.
  • Ref 1205 – An issue with SP4 and database migration has been resolved.
  • Ref 1250 – Displaying special characters has been improved.
  • Ref 1402 – An issue with renaming NICs on the networking > interfaces > interfaces page has been resolved.
  • Ref 1426 – Self-signed SSL certificates now use the correct country code for UK.
  • Ref 1452 – Issues with menu and button options on the information > realtime > web filter page have been resolved.
  • Ref 1480 – Intel 10 Gigabit IXGB and Intel 10 Gigabit IXGBE NICs are now supported.
  • Ref 1495 – An issue displaying log index ranges has been resolved.
  • Ref 1618 – PID heartbeat files are now removed when necessary.
  • Ref 1630 – Intel AHCI disk controller support has been improved.
  • Ref 1706 – The default filename when taking a backup by SCP has been improved.
  • Ref 1756 – A vulnerability issue with the e1000 and e1000e network drivers has been resolved.
  • Ref 1802 – An issue displaying the information > settings > database backup page in Internet Explorer 8 on Windows 7 has been resolved.
  • Ref 1813 – Terminology displayed on the dashboard is now more user-friendly and matches that used in the hardware report.
  • Ref 1826 – The processes of starting and stopping the database have been improved.
  • Ref 1998 – An issue installing main: Update 18 has been resolved.
  • Ref 2007 – A reliability issue with the MegaRAID SAS driver has been resolved.
  • Ref 2010 – Shutting down the database has been improved.
  • Ref 2019 – Database duplicate checking has been removed and will no longer cause high system load.
  • Ref 2040 – An issue loading the 3w-9xxxb driver has been resolved.
  • Ref 2050 – An issue installing updates at a specified time has been resolved.
  • Ref 2069 – an issue displaying text-based reports has been resolved.
  • Ref 2073 – OpenSSL has been updated to version OpenSSL 0.9.8o.
  • Ref 2077 – Issues displaying the system > maintenance > updates page in Internet Explorer 8 have been resolved.
  • Ref 2083 – An issue with closed connections between Guardian and the authentication system has been resolved.
  • Ref 2094 – The load average scale has been increased.
  • Ref 2108 – Names given to reports generated as PDF files are now based on the original report.
  • Ref 2110 – Information on disk usage has been improved on the information > settings > database backup page.
  • Ref 2112 – Displaying menu options on the navigation bar has been optimized.
  • Ref 2118 – Entering standby mode now stops masters from replicating settings to slave machines.
  • Ref 2131 – When entering serial number information, ordering of countries is now done alphabetically.
  • Ref 955 – An issue with documenting remote archiving has been resolved.
Released: Mon Jul 12 09:25:00 2010
main : Update 22
This update includes, addresses or resolves the following:

  • Ref 2146 – A problem with the download of Snort rules has been resolved
  • Ref 2154 – Change to interface functionality added
  • New – Support for multiple NICs added to Network Guardian
Released: Wed Aug 18 09:25:00 2010
main : Update 23
This update includes, addresses or resolves the following:

  • Ref 2083 – An issue with closed connections between Guardian and the authentication system has been resolved.
Released: Tue Oct 5 09:25:00 2010
main : Update 24
This update includes, addresses or resolves the following:

  • Ref 1409 – An issue with the database pruning script has been resolved.
  • Ref 1776 – The terminology used to describe database health has been improved.
  • Ref 2096 – Headings used in the firewall statistics report have been improved.
  • Ref 2099 – Performance has been improved when running reports.
  • Ref 2138 – An issue with the search terms report has been resolved.
  • Ref 2167 – An issue displaying certain characters in the authentication system has been resolved.
  • Ref 2707 – File system check can now be aborted by pressing CTRL+C
  • Ref 2738 – An issue which occurred when retiring modules has been resolved.
Released: Tue Feb 22 09:25:00 2011
main : Update 25
This update includes, addresses or resolves the following:

  • Ref 3405 – minor internal change to reporting engine.
Released: Wed Mar 16 09:25:00 2011
main : Update 26
This update includes, addresses or resolves the following:

  • Ref 3556 – Enhancement to support tools.
Released: Wed Mar 23 09:25:00 2011
main : Update 27
Before applying this update, which contains updates to supported hardware drivers, it is recommended that you take a full backup of your settings. If running older modems or network cards (BeWAN PCI DSL, Conexant PCI DSL or others), or using software RAID, please contact support before applying this update.
In addition, this update includes, addresses or resolves the following:

  • Ref 1582 – The certificate authority list has been updated
  • Ref 1427 – The housekeeping of older log files has been improved
Released: Tue Apr 5 09:25:00 2011
main : Update 28
This update includes, addresses or resolves the following:

  • Ref 3712 – glibc2 package updated
Released: Tue Apr 12 09:25:00 2011
main : Update 29
This update includes, addresses or resolves the following:

  • Ref 3692 – A database problem on systems with 32GB or above RAM has been resolved.
  • Ref 3693 – Auth exceptions are now migrated correctly
  • Ref 3752 – The “reduce overblocking” policy is no longer being migrated to Guardian 3
Released: Tue Apr 26 09:25:00 2011
main : Update 30
This update includes, addresses or resolves the following:

  • Ref. 3134 – OpenSSL has been updated to the latest version.
  • Ref. 3431 – Cleaning up downloaded files has been improved.
  • Ref. 3689 – MobileGuardian policies are now migrated correctly.
  • Ref. 3697 An issue with the Setup program and ISDN, ADSL, DHCP and outgoing defaults sections has been resolved.
  • Ref. 3822 – An issue with the software RAID health report has been resolved.
Released: Mon Jun 6 09:25:00 2011
main : Update 31
This update includes, addresses or resolves the following:

  • Ref. 3964 – An issue which caused VPNs to fail to start when using all NICs has been resolved.
  • Ref: 3979 – Issues with settings on the networking » settings » advanced page have been resolved.
  • Ref: 4081 – The LSI RAID tool is now available as a command line tool.
Released: Mon Aug 1 09:25:00 2011
main : Update 32
This update includes, addresses or resolves the following:

  • Ref. 4479 – Apache range request DoS attack (CVE-2011-3192).
  • Ref. 4511 – DigiNotar root certificate removed due to fraudulent issue of *.google.com certificate.
Released: Tue Aug 30 09:25:00 2011
main : Update 33
This update includes, addresses or resolves the following:

  • NEW – Central logging improvements
  • NEW – A Run report button has been added for ease of use
  • Ref 3819 – The database now always starts on systems with large amounts of RAM
Released: Tue Oct 18 09:25:00 2011
main : Update 34
This update includes, addresses or resolves the following:

  • Ref 4464 – The display of central management policies when working with them has been improved.
Released: Wed Oct 19 09:25:00 2011
main : Update 35
This update includes, addresses or resolves the following:

  • Ref: 4780 – An issue with replication failing where Guardian3 had a large number of custom categories has been resolved.
  • Ref: 4009 – New log rotation options for IDS and IPS are available, see the info -> logs -> log settings page for more information.
  • Ref: 1985 – An issue with the Connection Tracking table size has been resolved.
Released: Mon Oct 24 09:25:00 2011
main : Update 36
This update includes, addresses or resolves the following:

  • Small performance improvements.
Released: Thu Nov 24 09:25:00 2011
main : Update 37
This update includes, addresses or resolves the following:

  • Ref: 4851 – Added driver support for Atheros AR8151 Gbit Ethernet.
  • Ref: 4122 – Added support for Broadcom BCM57780.
Released: Tue Dec 13 09:25:00 2011
main : Update 38
Update to new user interface theme and navigation.IMPORTANT: This update will change the appearance of your Web UI. Menu items remain in the same layout as before, and functional screens remain largely unchanged.
Released: Thu Jan 12 09:25:00 2012
main : Update 39
This update includes, addresses or resolves the following:

  • Ref. 5365 – An issue with username type-ahead has been resolved.
  • Ref. 5371 – An issue with data column display caused by the license expiry message has been resolved.
  • Ref. 5372 – An issue with disk space check has been resolved.
  • Ref. 5375 – An issue which caused the RAID 1 mirror fail message to not display has been resolved.
Released: Wed Jan 25 09:25:00 2012
main : Update 40
This update includes, addresses or resolves the following:

  • Ref. 1309 – An issue with rotated logs being retained has been resolved.
  • Ref. 2803 – Info links are no longer displayed on the system -> maintenance -> updates under Installed updates.
  • Ref. 3831 – Temporary bans are now correctly removed after expiry.
  • Ref. 4704 – An issue with central logging has been resolved.
  • Ref. 4752 – Central logging performance has been enhanced.
  • Ref. 4857 – Local log retention is now configurable on the System -> Central management -> Settings page.
  • Ref. 4889 – An issue with database backup has been resolved.
  • Ref. 5160 – The single user web user audit report has been improved when shown in MS Excel.
  • Ref. 5179 – An issue when disabling central logging has been resolved.
  • Ref. 5311 – An issue with settings replication has been resolved.
  • Ref. 5332 – The database backup path is now shown correctly on the Logs and reports -> Settings -> Database backup page.
  • Ref. 5368 – An issue in some reports, caused by missing lines in logs, has been resolved.
Released: Thu Feb 16 09:25:00 2012
main : Update 41
This update includes, addresses or resolves the following:

  • Ref. 5276 – Displaying policies on the Guardian -> Web filter -> Manage policies page has been improved.
Released: Mon Feb 20 09:25:00 2012
main : Update 42
This update includes, addresses or resolves the following:

  • Ref N/A – Updated help files
Released: Fri Mar 16 09:25:00 2012
main : Update 43
Important: This update fixes security issues. It is recommended you apply these patches as soon as possible.This update includes, addresses or resolves the following:

  • Ref 5822: Applied security fixes for OpenSSL
Released: Tue Apr 3 09:25:00 2012
main : Update 44
This update addresses:

  • Ref: 5901 – Enhanced support and system tools
Released: Sun May 13 09:25:00 2012
main : Update 45
This update adds the following new features:

  • Ref: 5902 – Security fix for Apache
Released: Mon May 14 09:25:00 2012
main : Update 46
New Central Management feature: Get access to performance and management information for your whole organisation from one place. Manage the software upgrade process across your network from one location.This update adds the following new features:

  • Ref. 4412 – An issue with the naming of central management key files has been resolved.
  • Ref. 5035 – Displaying reporting results on the Logs and reports > Reports > Recent and Saved page has been improved.
  • Ref. 5563 – An incorrect message, saying reboot instead of shutdown, has been corrected.
  • Ref. 5742 – It is now possible to switch off central logging in a replication policy.
  • Ref. 6070 – An issue with managing blocklists has been resolved.
  • Ref. 4568 – Due to improvements in the replication system, we recommend that the latest updates are applied to all child nodes in the system before a replication profile is applied.
Released: Thu Jun 21 09:25:00 2012
main : Update 47
This release adds the Kerberos authentication method. Kerberos supercedes NTLM as the preferred method for authenticating Active Directory or Open Directory domain computers. If you are using NTLM succesfully, it is advised that you do not alter your settings unless you need a specific feature of Kerberos, such as support for Apple Mac. Non-domain devices will not work with Kerberos. Please see the Administrator’s Guide for more detail. This update does not change the operation of already configured systems.This release also adds Cookie based SSL login support, in order to better use the SSL login captive portal on mobile devices and tablets. The SSL login authentication method is now split into two methods, the traditional and the cookie based. This release changes some of the properties of the existing SSL login page, such as the way login messages are displayed. Please confirm that you are happy with the look of your login page after this upgrade in the unlikely event the changes have affected your setup. Consult the Administrator’s Guide for more information on this new feature.This update adds the following new features:

  • Ref. 5454 – Quick links to subsections have been added on each page.
  • Ref. 5575 – There have been fixes to access restriction on location-based blocking.
Released: Tue Jul 17 09:25:00 2012
main : Update 48
This update adds the following new features:

  • Ref. 6096 – The be2net driver is now supported in HP G7 blades/c7000 chassis.
  • Ref. 6207 – The latest Dell Perc H710 RAID storage controller is now supported.
  • Ref. 6216 – Support for DELL R420 NIC has been added.
Released: Wed Aug 29 09:25:00 2012
main : Update 49
This update adds the following new features:

  • Ref. 6305 – Certificate Authority certificates have been updated.
  • Ref. 6099 – Users are now warned on the Login page if their browser is not supported or if cookies and/or JavaScript are disabled.
Released: Mon Oct 1 09:25:00 2012
main : Update 50
This release allows customers to better manage the risks of users having access to different internet services. For example a team may need to have access to specific trusted FTP servers whilst FTP would be blocked for all other users. By enabling both source and destination addresses to be specified this release provides customers with that granular level of control.This update adds the following new features:

  • Ref. 6063 – OpenSSH has been updated to version 6.0p1-3.
  • Ref. 5440 – Port forward configuration checks on the System > Diagnostics > Configuration tests page now display all port forwards correctly.
Released: Mon Nov 26 09:25:00 2012
main : Update 51
This update adds the following new features:

  • Ref. 6626 – An issue with pagination has been resolved.
Released: Mon Dec 24 09:25:00 2012