KeeneticOS 3.6
KeeneticOS 3.6.10
16/07/2021
New
Fixed
Fixed the procedure for Extender acquisition to the Mesh Wi‑Fi System under certain conditions. [NDM-1775]
Enhancements improving the stability of the SSTP VPN server's client session during active data transfer. [NDM-1777]
KeeneticOS 3.6.9
08/07/2021
Improved
We deployed a new firmware signing certificate to the cloud infrastructure to strengthen the security of KeeneticOS updates. [SYS-314]
Fixed
There are no changes for Keenetic Peak (KN-2710).
KeeneticOS 3.6.8
26/06/2021
New
Improved
Updated
Curl
daemon to7.77.0
version, which fixes the CVE-2021-22897, CVE-2021-22898, CVE-2021-22901 vulnerabilities.
Fixed
There are no changes for Keenetic Peak (KN-2710).
KeeneticOS 3.6.5
24/05/2021
Improved
Patched a collection of security vulnerabilities called FragAttacks (Fragmentation and Aggregation Attacks). [SYS-276, SYS-277, SYS-278, SYS-280, SYS-282, SYS-283]
CVE-2020-24586 — fragment cache attack (not clearing fragments from memory when (re)connecting to a network).
CVE-2020-24587 — mixed key attack (reassembling fragments encrypted under different keys).
CVE-2020-24588 — aggregation attack (accepting non-SPP A-MSDU frames).
CVE-2020-26139 — forwarding EAPOL frames even though the sender is not yet authenticated (should only affect APs).
CVE-2020-26146 — reassembling encrypted fragments with non-consecutive packet numbers.
CVE-2020-26147 — reassembling mixed encrypted/plaintext fragments.
CVE-2020-26140 — accepting plaintext data frames in a protected network.
Fixed
Internet connection status detection for the 4G/3G modems with disabled Ping Check service. [NDM-572]
KeeneticOS 3.6.4
This is the initial shipping release for Keenetic Peak (KN-2710).