Version 6.5.0 Known Issues
|
Bug ID |
Headline |
|---|---|
|
ISA 3000 FTD deployment fails with hardware-bypass activated |
|
|
FTD performance has dropped approximately 5% in 6.5 SRTS runs |
|
|
Bootstrap configuration is not updated after FTD version downgrade |
|
|
FXOS security module will not power up after shutdown from FDM. |
|
|
ASA 55xx series perform slower than expected on 6.5 in 1024B and MaxCPS tests |
|
|
core.run_hm.pl found post FXOS upgrade |
|
|
API GET call for access policy with HitCount "true" and filter "fetchZeroHitCount" returns all rules |
|
|
Power cycling needed on FP1000 units when upgraded from 6.4 to 6.5 for SSD secure erase |
|
|
Pair of HA FP2100 may exhibit crash in LINA when under load and low on memory |
|
|
Cisco ASA & FTD devices may reload under conditions of low memory and frequent complete MIB walks |
|
|
Source SGT correlation doesn't work for FMC and FTD 6.5 |
|
|
FTD: API Automatic Malware updates are downloaded even when its turned off in API |
|
|
VLAN ID should not be seen under intrusion events when FTD is in routed or transparent mode |
|
|
CloudAgent core on FMCv - 6.5.0 |
|
|
ADI process can crash and core after reconnecting to ISE in a corner case |
|
|
lina segfault/reload caused by malloc failure in modexp-octeon |
|
|
FTD: Switching interface IP from static to DHCP causes FTD to use different DHCP client-ids |
|
|
Interface remains shutdown after switching between modes |
|
|
Firepower FMC upgrade failure at 800_post/1028_latency_settings_upgrade.pl |
|
|
Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability |
|
|
Traceback: FTD ZeroMQ memory assertion |
|
|
OpenSSH auth-gss2.c Information Disclosure Vulnerability |
|
|
OpenSSH Bailout Delaying User Enumeration Vulnerability |
|
|
Dev-side fix needed for online help: Fix Duplicate Help IDs |
|
|
Max conn test will not reach 60 M conn after clear conns couple times |
|
|
Firepower Chassis Manager Showing Smart Agent Disabled after upgrade to 2.7.1 |
|
|
Race condition for FMC API and GUI to fetch ACPs |
|
|
Warning about not supported bypass revocation checking for FTD 6.5 and higher |
|
|
Allowed to download zipped malware for first time |
|
|
"dns server-group DefaultDNS" cli not getting negated |
|
|
Auto Deploy fails after Restore if FDM cannot reach update server |
|
|
Version mismatch errors after upgrade resulting in policy deployment failures |
|
|
URL Filter license prevents policy deployment on all sensors if any one is missing the URL license |
|
|
Event search may fail when searching events that existed before upgrade |
|
|
Standby ASA Traceback at fover_parse and boot loop when detecting Active unit |
|
|
ASA Traceback in thread name: CERT API memory leak while processing CRLs |
|
|
Interfaces page from Objects section of the FMC does not load (domains page is likely affected also) |
|
|
ASA traceback Thread name - webvpn_task |
|
|
LINA cores are generated when FTD is configured to do SSL decryption. |
|
|
FTD-UI: Self signed Certificate UI has hardcoded life of 5 years |
|
|
FTD-UI: Self signed Certificate UI has hardcoded life of 5 years |
|
|
ASA 9.13.1.7 traceback and reload on process name LINA |
|
|
ASA High CPU with igb_saleen_io_sfp_mod_poll_thre process in 9.13(1)7 |
|
|
check heaps process failure seen on WM when uploading a 150Mb+ file |
|
|
FDM /ngfw/var/sf/fwcfg/zones.conf is empty |
|
|
FMCv Ethernet driver indicates vmxnet3 TCP performance compromised |
|
|
High unmanaged disk usage on /ngfw due to cisco_uridb* files |
|
|
duplicate ip addresses in sfipproxy.conf |
|
|
marked version 0.3.6 and earlier is vulnerable to an XSS attack in the |
|
|
marked is an application that is meant to parse and compile markdown. |
|
|
idn in GNU libidn before 1.33 might allow remote attackers to obtain s |
|
|
PCRE 7.8 and 8.32 through 8.37, and PCRE2 10.10 mishandle group empty |
|
|
res_query in libresolv in glibc before 2.25 allows remote attackers to |
|
|
Stack-based buffer overflow in the glob implementation in GNU C Librar |
|
|
The makecontext function in the GNU C Library (aka glibc or libc6) bef |
|
|
idn in libidn before 1.33 might allow remote attackers to obtain sensi |
|
|
The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allo |
|
|
Stack-based buffer overflow in the getaddrinfo function in sysdeps/pos |
|
|
The compile_branch function in pcre_compile.c in PCRE 8.x before 8.39 |
|
|
Memory leak in the __res_vinit function in the IPv6 name server manage |
|
|
An SSE2-optimized memmove implementation for i386 in sysdeps/i386/i686 |
|
|
The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by- |
|
|
The glob function in glob.c in the GNU C Library (aka glibc or libc6) |
|
|
In shadow before 4.5, the newusers tool could be made to manipulate in |
|
|
An issue was discovered in ide_dma_cb() in hw/ide/core. |
|
|
In the GNU C Library (aka glibc or libc6) through 2.29, |
|
|
GNU glibc elf/dl-load.c Local Privilege Escalation Vulnerability |
|
|
Glibc in_realpath() Underflow Local Code Execution Vulnerability |
|
|
GNU glibc getnetbyname Function Buffer Overflow Vulnerability |
|
|
Cloud configuration links don't support the new APJ region |
|
|
Import fails with local user password contains consecutive characters message |
|
|
A use-after-free vulnerability introduced in glibc upstream version 2. |
|
|
FTD Cluster unable to rejoin due to "process_create: out of stack memory " |
|
|
The jQuery framework exchanges data using JavaScript Object Notation ( |
|
|
Upgrade appears hung on FMC at 11% but shows failed on sensor |
|
|
Stack-based buffer overflow in the clntudp_call function in sunrpc/cln |
|
|
FMCv300 requesting wrong license after migration using sf-migration.pl |
|
|
Unexpected FTD traceback and reboot due to Lina core |
|
|
Internal1/1 data interface goes down without any reason or logs. |
|
|
stunnel process enabled on managed device when it should not be |
|
|
FTD Traceback On Thread Name: CP DP SFR Event Processing |
|
|
Traceback: ASDM Deployment causing ASA to reboot |
|
|
FDM/FTD-API: Password cannot be changed on standby for the admin user |
|
|
FXOS dynamically learning mac-address of external machine causing outage |
|
|
FXOS "clear mac address-table dynamic" only removes entry from front end (not backend) |
|
|
PPPoE fails to establish on ASA and FTD running on FP1010 |
Feedback