This patch release to FreeNAS 11.1-U6 primarily addresses a critical security vulnerability in Netatalk (CVE-2018-1160). While Netatalk is included in FreeNAS, this particular vulnerability only impacts those who have the AFP service enabled.
This patch release includes fixes from TrueNAS 11.1-U6.1 and 11.1-U6.2 that address several FreeBSD and Samba vulnerabilities. It also includes several SMART fixes.
FreeNAS 11.1-x users are encouraged to update to U6.3 using the instructions in the Guide. FreeNAS users who are running versions prior to FreeNAS 11.1-U6 are still vulnerable and should make a plan to update. Always backup your system configuration and verify the integrity of your backups before updating.
34687 | Bug | Add timeout for LDAP status calls |
39982 | Bug | Optimize detection of best host in freenasldap.py for large environments |
42257 | Bug | Keep AD in configured state even if service start fails |
42635 | Bug | Fix calculating total file size when resuming download of updates |
43168 | Bug | Fix SMART debug |
43712 | Bug | Drop server minimum protocol to SMB2_02 |
44240 | Bug | Fix removal of SMART alerts |
44581 | Bug | Fix bug that prevented deletion of Volume/Pool comments |
44625 | Bug | Fix a Samba panic if fruit_access_check detects a locking conflict |
46821 | Bug | Disable loop debug |
48721 | Bug | Apply recent FreeBSD security patches |
50929 | Bug | Increase maximum upload size for update file |
50973 | Bug | Remove unused ports from installation and upgrade files |
59958 | Bug | Fix multiple Samba CVEs |
64602 | Bug | Address Netatalk CVE-2018-1160 |