Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

December 17th, 2019

A vulnerability, CVE-2019-6477: TCP-pipelined queries can bypass tcp-clients limit, was found in 3rd party software running on the Men & Mice appliances.


A client using a TCP-pipelined connection to a server could consume more resources than the server has been provisioned to handle. When a TCP
connection with a large number of pipelined queries is closed, the load on the server releasing these multiple resources can cause it to become unresponsive, even for queries that can be answered
authoritatively or from cache


For more information, see https://kb.isc.org/docs/cve-2019-6477.
  

 

We recommend that all Men & Mice Appliances are upgraded to the latest version, 9.2.6.

The appliances can be easily upgraded using the Automatic Updates feature of the Men & Mice Suite.
For details on how to update the Men & Mice Suite, see 

https://docs.menandmice.com/display/MM/Updating+the+Men+and+Mice+Suite 

For more information regarding the upgrade, contact Men & Mice Support using the link below
https://docs.menandmice.com/display/MM/Contacting+Support

June 19th, 2019

Multiple vulnerabilities were found in 3rd party software running on the Men & Mice appliances.

...