KeeneticOS 3.6
KeeneticOS 3.6.12
21/10/2021
Fixed
Fixed a nasty bug that caused KeeneticOS to crash and device to reboot during the update availability check under certain conditions. [NDM-1830]
KeeneticOS 3.6.11
01/09/2021
Fixed
There are no changes for Keenetic Peak (KN-2710).
KeeneticOS 3.6.10
20/07/2021
New
Fixed
Fixed the procedure for Extender acquisition to the Mesh Wi‑Fi System under certain conditions. [NDM-1775]
Enhancements improving the stability of the SSTP VPN server's client session during active data transfer. [NDM-1777]
KeeneticOS 3.6.9
08/07/2021
Improved
We deployed a new firmware signing certificate to the cloud infrastructure to strengthen the security of KeeneticOS updates. [SYS-314]
Fixed
There are no changes for Keenetic Peak (KN-2710).
KeeneticOS 3.6.8
28/06/2021
New
Improved
Updated
Curl
daemon to7.77.0
version, which fixes the CVE-2021-22897, CVE-2021-22898, CVE-2021-22901 vulnerabilities.
Fixed
There are no changes for Keenetic Peak (KN-2710).
KeeneticOS 3.6.6
27/05/2021
Improved
Patched a collection of security vulnerabilities called FragAttacks (Fragmentation and Aggregation Attacks). [SYS-276, SYS-277, SYS-278, SYS-280, SYS-282, SYS-283]
CVE-2020-24586 — fragment cache attack (not clearing fragments from memory when (re)connecting to a network).
CVE-2020-24587 — mixed key attack (reassembling fragments encrypted under different keys).
CVE-2020-24588 — aggregation attack (accepting non-SPP A-MSDU frames).
CVE-2020-26139 — forwarding EAPOL frames even though the sender is not yet authenticated (should only affect APs).
CVE-2020-26146 — reassembling encrypted fragments with non-consecutive packet numbers.
CVE-2020-26147 — reassembling mixed encrypted/plaintext fragments.
CVE-2020-26140 — accepting plaintext data frames in a protected network.
The security issue CVE-2020-15078 of the OpenVPN client and server system component.
Fixed
Internet connection status detection for the 4G/3G modems with disabled Ping Check service. [NDM-572]
Internet safety policy operation after re-establishing a PPPoE (PPP over Ethernet) connection to the Internet. [NDMS-1420, NDMS-1485]
Fixed the Media Server application for handling multiple simultaneous requests from different DLNA clients. [NDMS-227]
The Download station interface localization now follows correctly the selected language of the Web Interface. [NDMS-1541]
KeeneticOS 3.6.4
This is the initial shipping release for Keenetic Peak (KN-2710).