TR03S10156 - The procedure to collect logs automatically doesn't gather logs from the user's home on the nodes TR03S10165 - Keys to pre-define session resolution are ineffective Customers using version 6 should read the announcement here:įR03S04122 - Updating the OpenSSL libraries provided by NoMachine to v. Furthermore, we decided, with this update, to bring the OpenSSL version we use up to par with the latest stable OpenSSL release, to make it easier and more straightforward to bring you security updates in the future.ĭetails about the OpenSSL 1.1.1k update are here:Īll NoMachine 7 customers are invited to update their NoMachine client and server installations to this latest release, 7.4.1. Although NoMachine software is not susceptible to this flaw (CVE-2021-3449), we made the decision to upgrade due to other issues disclosed, issues also marked as serious by OpenSSL, albeit not critical, and that were in any case not exploitable using the default configuration of the NX server. We would like to reassure our users about OpenSSL version 1.1.1k in which maintainers disclosed and patched a null pointer dereference bug that causes servers to crash when they receive a maliciously crafted request from an unauthenticated end user. Luxembourg, March 30th, 2021 - NoMachine makes available updates to NoMachine version 7 to fix issues affecting earlier versions and to align the OpenSSL libraries to the latest OpenSSL release which was recently published.
0 Comments
Leave a Reply. |