Access point controller can now set static gateway addresses
Improvements
- 81782 - Web-UI fixes: Access point controller can now set static gateway addresses
Security fixes
- 83072 - Busybox CVE fixes: CVE-2022-28391: arbitrary remote code execution via netstat. CVE-2022-48174: arbitrary code execution via stack overflow in ash. CVE-2022-30065: possible denial of service via use-after-free in awk
- 83077 - cURL CVE fixes: CVE-2023-38546: This flaw allows an attacker to insert cookies at will into a running program using libcurl. CVE-2023-38545: This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy hand-
shake.
Fixes
Web-UI fixes
- 78469, 83075, 83076: If the access token for the login page expired it will be automatically refreshed now. After a factory reset a wrong IP address was shown on the LAN interface. This is fixed. On NB1601 Rev. 1.6 and NB3800 Rev C01 USB to serial adapters were no longer recognized and displayed. This is fixed.
802.1X fixes
- 81896: Connected ethernet ports with unauthenticated clients will now periodically trigger reauthentication requests.
Open VPN fixes
- 82788: OpenVPN server expert files did not install shared network settings correctly. This is fixed.
LXC DNS fixes
- 83071, 83074: DNSmasq configurations of virtual interfaces in LXC containers got deleted on network reconfiguration. This is fixed.
DNSmasq settings were not properly written after gateway changes on a virtual interface
Firewall fixes
- 83078: NAT rules did not function as expected in some cases after router reboot due to connection tracking. This is fixed