VyOS Platform Blog

Building an open source network OS for the people, together.

Filter by:
test down

Select Category

or
Filter by:
test down

Select Category

or

Category: VyOS Platform Blog | security

Daniil Baturin
Posted 30 Mar, 2022

VyOS 1.3.1-S1 security release

Hello Community! VyOS 1.3.1-S1 security release is now available to customers and contributors to download, and everyone can build it from the source. It fixes ...
The post categories:
Daniil Baturin
Posted 21 Mar, 2022

VyOS 1.3.1 release

Hello, Community VyOS 1.3.1 release is now available: subscribers (customers and contributors) can download binary images from the support portal, and everyone ...
The post categories:
Daniil Baturin
Posted 16 Mar, 2022

CVE-2022-0778: remote DoS in OpenSSL, VyOS 1.3.0 is affected

Hello Community! Yesterday the OpenSSL team disclosed a remote DoS vulnerability in OpenSSL versions 1.0.2, 1.1.1, and 3.0. You can find a complete description ...
The post categories:
Daniil Baturin
Posted 14 Dec, 2021

Log4Shell vulnerability

Hello Community! Everyone is talking about the CVE-2021-44228 vulnerability recently found in the Log4j logging library, which was nicknamed Log4Shell because i...
The post categories:
Daniil Baturin
Posted 28 Sep, 2020

VyOS 1.2.6-S1 security release

VyOS 1.2.6 release was found to be suspectible to CVE-2020-10995. It's a low-impact vulnerability in the PowerDNS recursor that allows an attacker to cause perf...
The post categories:
Daniil Baturin
Posted 18 Jun, 2019

CVE-2019-11477 (TCP SACK panic) and an Intel i40e driver issue

Recently discovered vulnerability in the Linux kernel's TCP selective acknowledgement processing code potentially allows a remote attacker to cause a kernel pan...
The post categories:
Daniil Baturin
Posted 1 Nov, 2018

The "operator" level is proved insecure and will be removed in the next releases

The operator level in VyOS is a legacy feature that was inherited from the forked Vyatta Core code. It was always relatively obscure, and I don't think anyone r...
The post categories:
Daniil Baturin
Posted 27 Apr, 2018

On security of GRE/IPsec scenarios

As we've already discussed, there are many ways to setup GRE (or something else) over IPsec and they all have their advantages and disadvantages. Recently an is...
The post categories:
Daniil Baturin
Posted 4 Jan, 2018

The meltdown and spectre vulnerabilities

Everyone is talking about the meltdown and the spectre vulnerabilities now. If you are late to the party, read https://meltdownattack.com/  Of course we are awa...
The post categories:
Daniil Baturin
Posted 22 Oct, 2017

Update on the AWS SSH key fetching issue

We have fixed the issue with key fetching and submitted the updated AMI for review. It passed the automated scan, but manual review and deployment to the market...
The post categories: