Software Security Updates
Windows: Waterfall-Setup-7.9.1.0-GA9-release-R2502171040-PATCH1
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
jQuery | 3.1.0 | 3.7.1 | CVE-2019-5428 CVE-2019-11358 CVE-2020-11022 CVE-2020-11023 |
|
jQuery UI | 1.10.4 | 1.14.1 | CVE-2016-7103 CVE-2021-41182 CVE-2021-41183 |
|
Windows: Waterfall-Setup-7.9.0.0-GA9-release-R2412111209
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
libCurl | 8.6.0 | 8.10.1 | CVE-2024-7264 CVE-2024-6197 CVE-2024-6874 CVE-2024-8096 |
https://curl.se/docs/security.html |
Sqlite | 3.30.1 | 3.46.1 | CVE-2023-7104 CVE-2022-35737 CVE-2020-15358 CVE-2020-13632 CVE-2020-13631 CVE-2020-13630 CVE-2020-13435 CVE-2020-13434 CVE-2020-11656 CVE-2020-11655 CVE-2019-20218 CVE-2019-19959 CVE-2019-19926 CVE-2019-19925 CVE-2019-19924 CVE-2019-19923 CVE-2019-19880 CVE-2019-19646 CVE-2019-19645 CVE-2019-19603 CVE-2019-19317 CVE-2019-19244 CVE-2019-19242 |
|
EXifTool | 10.47 | 12.98 |
LibXML2 | 2.9.12 | 2.31.4 | CVE-2024-34459 CVE-2024-25062 CVE-2023-45322 CVE-2023-29469 CVE-2023-28484 CVE-2022-40304 CVE-2022-40303 CVE-2022-29824 CVE-2022-23308 |
|
---|---|---|---|---|
OpenSSL | 1.1.1u | 1.1.1w | ||
Linux: Waterfall-Setup-7.8.13.0-GA8-R2502171409-PATCH13
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
jQuery | 3.1.0 | 3.7.1 | CVE-2019-5428 CVE-2019-11358 CVE-2020-11022 CVE-2020-11023 |
|
jQuery UI | 1.10.4 | 1.14.1 | CVE-2016-7103 CVE-2021-41182 CVE-2021-41183 |
|
Windows: Waterfall-Setup-7.8.9.0-GA8-R2407311339-PATCH9
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
PHP | 7.4.16 | 8.3.8 | ||
Windows: Waterfall-Setup-7.8.8.0-GA8-R2407111546-PATCH8
Linux: Waterfall-Setup-7.8.8.0-GA8-R2407161741-PATCH8
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
Apache | 2.4.57 | 2.4.60 | ||
Windows: Waterfall-Setup-7.8.6.0-GA8-R2404170954-PATCH6
Linux: Waterfall-Setup-7.8.6.0-GA8-R2404101625-PATCH6
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
libCurl | 7.86.0 | 8.6.0 | CVE-2022-43552 CVE-2022-43551 CVE-2023-23916 CVE-2023-23915 CVE-2023-23914 CVE-2023-27533 CVE-2023-27535 CVE-2023-27538 CVE-2023-27534 CVE-2023-27536 CVE-2023-27537 CVE-2023-28322 CVE-2023-28321 CVE-2023-28319 CVE-2023-28320 CVE-2023-38039 CVE-2023-38545 CVE-2023-38546 CVE-2023-46218 CVE-2023-46219 CVE-2024-0853 |
https://curl.se/docs/security.html |
Windows: Waterfall-Setup-7.0.8.1-R2310021250-PATCH1
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
OpenSSL | 1.1.1s | 1.1.1u | CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450 CVE-2022-4304 |
https://www.openssl.org/news/vulnerabilities-1.1.1.html |
Apache | 2.4.54 | 2.4.57 | CVE-2023-27522 CVE-2023-25690 CVE-2022-37436 CVE-2022-36760 CVE-2006-20001 |
https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x/CHANGES |
———
WINDOWS: Waterfall-Setup-7.0.8.0-R2309211226.exe
LINUX: Waterfall-Setup-7.0.8.0-R2309211228.run
Component | Prev version | New version |
OpenSSL | 1.1.1s | 1.1.1u |
Apache | 2.4.54 | 2.4.57 |
WINDOWS VERSION 7.0.7.0-R2301220555
LINUX VERSION 7.0.7.0-R2301220556
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
CURL | 7.81.0 | 7.86.0 | CVE-2022-42916 CVE-2022-42915 CVE-2022-32221 CVE-2022-35252 CVE-2022-32208 CVE-2022-32207 CVE-2022-32206 CVE-2022-32205 CVE-2022-27782 CVE-2022-27781 CVE-2022-27780 CVE-2022-27776 CVE-2022-27775 CVE-2022-27774 CVE-2022-22576 |
https://curl.se/docs/releases.html |
OpenSSL | 1.1.1m | 1.1.1s | CVE-2022-2097 CVE-2022-2068 CVE-2022-1292 CVE-2022-0778 |
https://www.openssl.org/news/vulnerabilities-1.1.1.html |
Apache | 2.4.50 | 2.4.54 | CVE-2022-31813 CVE-2022-30556 CVE-2022-30522 CVE-2022-29404 CVE-2022-28615 CVE-2022-28614 CVE-2022-28330 CVE-2022-26377 CVE-2022-23943 CVE-2022-22721 CVE-2022-22720 CVE-2022-22719 CVE-2021-44790 CVE-2021-44224 CVE-2021-42013 CVE-2021-41773 |
https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x/CHANGES |
WINDOWS:
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
CURL | 7.76.1 | 7.81.0 | CVE-2021-22945 CVE-2021-22946 CVE-2021-22947 CVE-2021-22897 CVE-2021-22898 CVE-2021-22901 |
https://curl.se/changes.html |
OpenSSL | 1.1.1k | 1.1.1m | CVE-2021-3711 CVE-2021-3712 CVE-2021-4160 |
https://www.openssl.org/news/vulnerabilities-1.1.1.html |
libXML2 | 2.9.9 | 2.9.12 | CVE-2021-3537 CVE-2021-3518 CVE-2021-3517 CVE-2020-24977 CVE-2020-7595 CVE-2019-20388 CVE-2019-19956 |
https://www.cvedetails.com/vulnerability-list/vendor_id-1962/product_id-3311/Xmlsoft-Libxml2.html |
WINDOWS: 7.0.5.0-R2107081105
LINUX: 7.0.5.0-R2107081112:
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
CURL | 7.74.0 | 7.76.1 | ||
OpenSSL | 1.1.1g | 1.1.1k |
WINDOWS: 7.0.5.2-R2111111925
LINUX: 7.0.5.2-R2111111928
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
Apache | 2.4.50 |
WINDOWS: WATERFALL-SETUP-7.0.4.0-R2012281035.EXE
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
CURL | 7.70.0 | 7.74.0 | CVE-2020-8231 CVE-2020-8286 CVE-2020-8285 CVE-2020-8284 |
https://curl.se/docs/CVE-2020-8231.html https://curl.se/docs/CVE-2020-8286.html https://curl.se/docs/CVE-2020-8285.html https://curl.se/docs/CVE-2020-8284.html |
LINUX: WATERFALL-SETUP-7.0.4.0-R2012281045.RUN
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
CURL | 7.70.0 | 7.73.0 | CVE-2020-8231 | https://curl.se/docs/CVE-2020-8231.html |
WINDOWS: WATERFALL-SETUP-7.0.3.0-R2008201034.EXE
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
OpenSSL | 1.1.1d | 1.1.1g | CVE-2019-1551 CVE-2020-1967 |
https://www.openssl.org/news/vulnerabilities.html#2020 |
CURL | 7.65.3 | 7.70.0 | CVE-2019-5481 CVE-2019-5482 CVE-2019-15601 |
https://curl.haxx.se/changes.html |
FFMPEG | 3.2.4 | 4.2.2 | CVE-2019-12730 CVE-2018-1999010 CVE-2018-14395 CVE-2018-14394 CVE-2017-9996 CVE-2017-9994 CVE-2017-9993 CVE-2017-9992 CVE-2017-9991 CVE-2017-9608 CVE-2017-7859 |
https://www.cvedetails.com/vulnerability-list/vendor_id-3611/product_id-6315/version_id-212272/Ffmpeg-Ffmpeg-3.2.4.html |
Apache | 2.4.41 | 2.4.43 | CVE-2020-1934 CVE-2020-1927 |
https://www.cvedetails.com/vulnerability-list/vendor_id-45/product_id-66/Apache-Http-Server.html https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x/CHANGES |
LINUX: WATERFALL-SETUP-7.0.3.0-R2008201040.RUN
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
GNU File | 5.11 | 5.37 | CVE-2014-8116 CVE-2014-8117 CVE-2014-9652 CVE-2014-9653 CVE-2014-9620 |
https://github.com/file/file/blob/master/ChangeLog |
WINDOWS: WATERFALL-SETUP-7.0.2.0-R2002231042
Component | Old Version | New Version | Fixed Issues | Link |
OpenSSL | 1.0.2q | 1.1.1d | CVE-2019-1559 CVE-2019-1563 CVE-2019-1547 CVE-2019-1552 |
https://www.openssl.org/news/vulnerabilities.html#y2019 |
XERCES-C | 3.1.1 | 3.2.2 | CVE-2015-0252 | https://www.cvedetails.com/vulnerability-list/vendor_id-45/product_id-31348/version_id-180832/Apache-Xerces-c-3.1.1.html |
libCURL | 7.63.0 | 7.65.3 | CVE-2019-5435 CVE-2019-5436 CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 |
https://curl.haxx.se/changes.html |
GNU File | 5.03 | 5.37 | CVE-2014-8116 CVE-2014-8117 CVE-2014-9652 CVE-2014-9653 |
https://github.com/file/file/blob/master/ChangeLog |
7zip | 9.20 | 19.00 | CVE-2018-10172 CVE-2018-10115 CVE-2018-5996 CVE-2017-17969 CVE-2016-7804 CVE-2016-2335 CVE-2016-2334 |
https://www.cvedetails.com/vulnerability-list/vendor_id-9220/7-zip.html |
WGET | 1.20 | 1.20.3 | CVE-2019-5953 CVE-2018-20483 |
https://www.cvedetails.com/vulnerability-list/vendor_id-72/product_id-332/GNU-Wget.html |
libxml2 | 2.9.2 | 2.9.9 | CVE-2018-14567 CVE-2018-14404 CVE-2018-9251 CVE-2017-18258 CVE-2017-16932 CVE-2017-16931 CVE-2017-15412 CVE-2017-9050 CVE-2017-9049 CVE-2017-9048 CVE-2017-9047 CVE-2017-8872 CVE-2017-7376 CVE-2017-7375 CVE-2017-5969 CVE-2017-5130 CVE-2016-9598 CVE-2016-9597 CVE-2016-9596 CVE-2016-9318 CVE-2016-5131 CVE-2016-4616 CVE-2016-4615 CVE-2016-4614 CVE-2016-4483 CVE-2016-4449 CVE-2016-4448 CVE-2016-4447 CVE-2016-3705 CVE-2016-3627 CVE-2016-2073 CVE-2015-8806 CVE-2015-8710 CVE-2015-8317 CVE-2015-8242 CVE-2015-8241 CVE-2015-8035 CVE-2015-7942 CVE-2015-7941 CVE-2015-7500 CVE-2015-7499 CVE-2015-7498 CVE-2015-7497 CVE-2015-6838 CVE-2015-6837 CVE-2015-5312 |
https://www.cvedetails.com/vulnerability-list/vendor_id-1962/product_id-3311/Xmlsoft-Libxml2.html |
SQLite3 | 3.26.0 | 3.30.1 | CVE-2019-16168 CVE-2019-9937 CVE-2019-9936 CVE-2019-8457 CVE-2019-5018 |
LINUX: WATERFALL-SETUP-7.0.2.0-R2002230958
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
GNU File | 5.11 | 5.37 | CVE-2014-8116 CVE-2014-8117 CVE-2014-9652 CVE-2014-9653 CVE-2014-9620 |
https://github.com/file/file/blob/master/ChangeLog |
WINDOWS: WATERFALL-SETUP-7.0.1.0-R1908281503
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
OpenSSL | 1.0.2p | 1.0.2q | CVE-2018-5407 CVE-2018-0734 |
https://www.openssl.org/news/openssl-1.0.2-notes.html |
Apache | 2.4.29 | 2.4.39 | CVE-2019-0197 CVE-2019-0196 CVE-2019-0211 CVE-2019-0196 CVE-2019-0217 CVE-2019-0215 CVE-2019-0220 CVE-2018-17199 CVE-2018-17189 CVE-2019-0190 CVE-2018-8011 CVE-2018-1333 CVE-2017-15710 CVE-2018-1283 CVE-2018-1303 CVE-2018-1301 CVE-2017-15715 CVE-2018-1312 CVE-2018-1302 |
https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x/CHANGES |
LINUX: WATERFALL-SETUP-7.0.1.0-R1908281434
Component | Old Version | New Version | Fixed Issues | Link |
---|---|---|---|---|
libCURL | 7.61.0 | 7.63.0 | CVE-2018-16839 CVE-2018-16840 CVE-2018-16842 CVE-2018-14618 |
https://curl.haxx.se/changes.html |
OLDER RELEASES
RELEASE | DATE | DESCRIPTION |
---|---|---|
WF-Setup-5.1.0.0-r1805101931 | 5/10/2018 | Updated ICCP library from version 5.4 to 6.1. The ICCP library is used only by the ICCP connector. For details see: https://www.sisconet.com/uncategorized/product-release-iccp-lite-plus/ |
WF-Setup-5.1.0.0-r1712241132 | 12/24/2017 | Added connectors, functionality and fixed non-security-related defects. |
WF-Setup-5.1.0.0-r1710091113 | 10/9/2017 | Added connectors, functionality and fixed non-security-related defects. |
WF-Setup-5.1.0.0-r1708160240 | 8/16/2017 | Updated OpenSSL library from version 1.0r2f to 1.02g. OpenSSL is used only by the connectors: TCP Multicast, Syslog, Splunk and OPC UA. For details see: https://www.openssl.org/news/openssl-1.0.2-notes.html |
WF-Setup-5.1.0.0-r1707061728 | 7/6/2017 | Updated ACE library from version 5.7.6 to 6.0.3. The ACE library is used in all Unidirectional Gateway installations. For details see: https://github.com/DOCGroup/ACE_TAO/blob/master/ACE/NEWS |