Sophos UTM: New update (UTM 9.701-6)

Sophos has released a new update for Sophos UTM today. The update raises the version to 9.701-6. It is a maintenance release, but it fixes the problems with iOS 13 and the "new" certificate policy from Apple.

• Here is the list of all bugfixes:
  [NUTM-11142]: [AWS] Unable to create VPC tunnel to AWS GovCloud
• [NUTM-10024]: [Basesystem] Unexpected reboots of both HA nodes
• [NUTM-10625]: [Basesystem] IPs will be counted under license usage even they are not really active
• [NUTM-10893]: [Basesystem] UTM does not process traffic after reboot
• [NUTM-11065]: [Basesystem] iptables-restore: line 10 failed: ICMP Rule disappears sporadically
• [NUTM-11234]: [Basesystem] NTP vulnerabilitiy (CVE-2018-12327)
• [NUTM-11121]: [Configuration Management] Confd move_object() is broken
• [NUTM-10051]: [Email] DLP Custom expression does not match if message text starts with a ‚<‚
• [NUTM-11229]: [Email] Patch Exim (CVE-2019-15846)
• [NUTM-10019]: [Network] Unexpected UDP drops (UDP / 4742)
• [NUTM-10519]: [Network] BGP neighborship not coming up
• [NUTM-10963]: [Network] NAT rules stopped working after update
• [NUTM-11005]: [Network] IP renewal doesn’t work for one interface if multiple dynamic uplinks exist
• [NUTM-11175]: [Network] IPS exception does not work for SID 49666 for inbound WAF traffic
• [NUTM-11208]: [Network] Optimize route updates
• [NUTM-11003]: [UI Framework] Portal login failed to find user object of Active Directory user
• [NUTM-11030]: [UI Framework] Webadmin mass enable/disable/delete user does not work
• [NUTM-11053]: [UI Framework] Alert „Do you want to wait xx more seconds to finish the request?“ does not disappear if request is done.
• [NUTM-11214]: [UI Framework] Conform to Apple’s new certificate requirements (webadmin)
• [NUTM-10960]: [Web] Proxy crash with coredump on UTM 9.602
• [NUTM-11034]: [Web] Method change on UTM warn page in 9.6 cause warning in Firefox
• [NUTM-11102]: [Web] SafeSearch not working as expected
• [NUTM-11345]: [Web] Regenerated Signing CA using 1024bit key, causing iOS 13 trust issues
• [NUTM-11422]: [Web] Error while saving any web filter profile after upgrade to 9.7
• [NUTM-10834]: [Wireless] UTM config changelog updates when reviewing wireless network settings
• [NUTM-11122]: [Wireless] QR code missing from hotspot voucher when custom hostname is longer than 24 characters
• [NUTM-11150]: [Wireless] APs became inactive after upgrade from UTM 9.603 to 9.604

Especially after the recent problems with the Sophos updates, the update should be tested extensively. The update can be downloaded here:

https://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.700005-701006.tgz.gpg

The update will also be distributed via Up2Date in the near future.