VyOS Networks Blog

1.1.3 maintenance release is available for download (mirrors are syncing up).

CVE-2015-0235 is the only reason we made it this early. It includes some package updates from squeeze-lts apart from eglibc, but it’s not supposed to fix any other known issues.

Even though the vulnerability is hardly easy to exploit, you are advised to upgrade your routers.

We hope there won’t be any emergencies any soon and we’ll be able to concentrate on VyOS issues rather than base system issues in the next maintenance release.