A 10Gbps link between SFP+ ports and
SWS14-48 Switches connectivity is not working when the interface speed is configured
to 10Gig Full Duplex.
Configure the SFP+ interface and SWS14-48 Switch SFP+ interface speed
to 1000Mbps Full Duplex
||Several IPv6 SSO inefficiencies in the mechanism for
inter-blade user synchronization requests (those which request other blades to send
something back, and then wait for the response) have been resolved.
||The web management interface reports Command xxx did not match when the guest service is
enabled on the LAN zone and the same IP address is used for both administrators and guests to manage
the management interface.
||The web management interface does not display the interface status indicators on the front panel
widget of the Dashboard on when it is first accessed.
||The VLAN subinterface does not display the correct MTU in the web management interface when Jumbo frames are
||An intermittent crash might be seen when adding SSO users through a third-party API and IPv6
and IPv4 groups overlap while IPv4/IPv6 traffic is present.
||Blade mismatch warnings are displayed for SSO API user authentication with large
number of users.
||A memory leak may occur from the SSO API, when returning multiple errors in response
to an SSO API request with multiple users.
||In L3 Port Aggregation, the Aggregate Port does not display the correct link
state on the Dashboard page of the web management interface.
||Incorrect IPv6 addresses are displayed for logged in users on the User Status
||Warnings are displayed on the console relating to holding locks/semaphore for a
||Trying to manually log out users using the web management interface once they are populated and
active displays the error: command 'killuser ...' does not match.
||A crash may be observed when accessing the IPv6 address cache with a mix of IPv4
and IPv6 users being repeatedly logged in or out,
||The maximum number of VLANs that could be displayed was previously set to 24. This has been
Increased it to display a maximum number of 1024 VLANs.
||Audit Logging stops reporting Security Policy action profile changes
when an UPE policy is configured with specific match criteria.
||In High Availability, for Standby firewall, the route policies of VLAN
interfaces (whose physical interface is configured as LAG) are in wrong
status when link is turned off or on.
||After enabling Mirror LDAP user groups locally, the web management interface does not
display the imported mirrored groups.
||Unnecessary shadow policy-related tracebacks are being reported on
the Standby firewall.
||After rebooting a unit in a High Availability pair, all users were being flushed from the unit's slave blades right after they were synchronized to them
from its master blade.
||If an SSH session goes into configuration mode, and does a commit for some
configuration when a prior SSH session configuration commit was still in
process, a deadlock situation may occur.
tHaImPrefTask stack traces were being printed in with a High
Availability pair when both WAN Load Balancing and IPv6 are enabled.
||A Site to Site VPN phase 2 tunnel with the IKE version configured as IKEv1 Main
Mode does not display any VPN tunnel statistics.
||Stack-based buffer overflow in SonicOS/X potentially resulting in Denial-of-Service (DoS).
||Potential exposure of sensitive information to an unauthorized user via SNMP.
||Potential exposure of Wireless Access Point (WAP) sensitive information via SNMP.
||Improper restriction of TCP communication channel potentially resulting in Denial-of-Service (DoS).
||Allocation of resources without limits or throttling can potentially result in HTTP DoS via the Content Filtering Service (CFS).
tNetObjMgr stack traces are displayed on the console.
||The OpenSSL library can enter an infinite loop when parsing an invalid
certificate, potentially resulting in Denial-of-Service (DoS).