Product Information

SGOS 5.4.4.1 GA

Product Information ID:    INFO1006
Version:    2.0
Status:    Published
Published date:    06/07/2010
Updated:    07/07/2010
 

Description

Blue Coat SGOS 5.4.4.1 GA has been released

What's New

Fixes in 5.4.4.1

Access Logging

  • Fixed a software restart in the "SSLW C40308D0" process in "kernel_shim.dll" at .text+0xcdc on SGOS 5.4.3.1.44023 when attempting to do a file I/O when the file wasn't open. SR 2-287779782, 2-288397389 (B#136858)
  • Fixed a page fault in the "ALOGReader:main" process in "kernel_gcc.dll" at .text+0x22e3, caused when attempting to log a disk I/O failure before its process configuration was initialized. SR 2-290127341 (B#137384)


Active Sessions

  • Improved several messages in the Active Sessions detail area to show more usable information. SR 2-286530462 (B#136630)
  • Fixed a page fault in the "CAG_Worker 55" process in "active_sessions.dll" at .text+0xa2f9 on an SG9000 running SGOS 5.4.2.30.43244. SR 2-295389832 (B#138965)


Authentication

  • Fixed the BCAAA LDAP thread deadlock, resulting in failure with Novell SSO authentication. SR 2-285420651 (B#136279) Cache Engine
  • Fixed the issue with prolonged high CPU usage due to incorrect handling of truncated objects (objects > 500K without a content-length header). SR 2- 290257426 (B#137760) CIFS
  • Stopped the same CIFS client from being listed numerous times in Errored Sessions when a policy denies its connection. (B#136774)


CLI Consoles

  • Fixed software restart in process "CLI_Worker_2" in "cli.dll" due to multithreaded, unsynchronized access to shared resources. SR 2-287176333 (B#136730)
  • Fixed the issue when a SSH client errors out or disconnects prematurely causing all sessions to be used and a “CM sshd No more sessions available” message to be displayed and the SSH session on the ProxySG is not closed down. SR 2-281572042, 2-291488130 (B#137851)
  • Fixed a software restart in the "director@ssh" process in "sshd.dll" at .text+0x1388d (buffer_append()). B#138277


HTTP

  • Fixed a software restart in HTTP CW C4F4DEC0" in "transformer_dll.dll" at .text+0xbbf. SR 2-287999062, 2-294812162 (B#134756)
  • Fixed a page fault at 0x86f4b000 in the "HTTP SW C4076F20 for C3C5EF20" process in "http.dll" at .text+0x566fb caused by an HTML page with the "base href" URL set to "http://" and caching turned off. SR 2-281795142 (B#135558)
  • Fixed a software restart in the "tcpip" process in "tcpip.dll" at .text+0x1545fc, or when a corrupt message is sent to the originating content server when an incoming HTTP request has multiple “Cookie:” headers. SR 2-291425792 (B#137789)


ICAP

  • Fixed connecting to a Vontu DCS from the ProxySG resulting in a stale Active Sessions being displayed as active. SR 2-287651282 (B#125422)


Kernel

  • Fixed a page fault in the "osconfig" process in "Kernel.dll" at .text+0x1934 that occurred when a lost interrupt led to the system to get stuck on the serial port. SR 2-286279782 (B#136761)
  • Fixed the issue where short (2 second) livelock events occurred every 10 seconds consistently throughout the day regardless of the traffic load. SR 2- 285028590 (B#137327)
  • Fixed a hardware restart (HWE0x2, SWE0x19, PF0x0) in the "Cache Administrator" process in "Kernel.dll" at .text+0x1b67f. SR 2-291765056 (B#138327)


Management Console

  • Fixed the issue where the "Sense Setting" in ICAP Services was not reflecting the modified setting until the Management Console is logged in to again. SR 2-289073164 (B#137493)


Netware

  • Fixed the issue where low MTU causing large file transfers to be dropped in a MACH5 install with ADN optimization set to byte-cache while the server still shows the file has been transferred successfully. SR 2-287876221 (B#138038)


Policy

  • Fixed URL rewrite statements being populated erroneously when compiled to policy. SR 2-287029621 (B#136842)


SOCKS

  • Fixed the issue where the SOCKS proxy was terminating half-closed client TCP connections without waiting for response from the originating server. SR 2-279629501 (B#136604)


SSL

  • Fixed the issue where SSL proxy failing when accessing https://www.redgate. com/ with Internet Explorer 8 with TLSv1 using Windows Vista. SR 2- 219254993, 2-285254482 (B#132043) Fixes in 5.4.4.1 Access Logging
  • Fixed a software restart in the "SSLW C40308D0" process in "kernel_shim.dll" at .text+0xcdc on SGOS 5.4.3.1.44023 when attempting to do a file I/O when the file wasn't open. SR 2-287779782, 2-288397389 (B#136858)
  • Fixed a page fault in the "ALOGReader:main" process in "kernel_gcc.dll" at .text+0x22e3, caused when attempting to log a disk I/O failure before its process configuration was initialized. SR 2-290127341 (B#137384)

 

 

TCP/IP and General Networking

  • Fixed symmetric traffic flow preventing internet access due to a newly enabled proxy participating in WCCP and not being included in the assignment mask table. SR 2-257077301, 2-285735503, 2-292732352 (B#134171)
  • Fixed the “restore-sg4-config” command not restoring the static-route-table in a 4x or 5x configuration. SR 2-283894542 (B#136270)
  • Fixed RST packets from the ProxySG not be routed using stored return-tosender or trust-dest-mac information. SR 2-290829559 (B#137803)


URL Filtering

  • Fixed high CPU utilization as often as every five minutes due to complete database rebuilds during BCWF auto updates. SR 2-286628122 (B#138242)


Windows Media

  • Fixed a page fault in the "HTTP CW BC891EC0" process in "http.dll" caused by parsing corrupted HTTP Pragma headers duringTCP/IP and General Networking
  • Fixed symmetric traffic flow preventing internet access due to a newly enabled proxy participating in WCCP and not being included in the assignment mask table. SR 2-257077301, 2-285735503, 2-292732352 (B#134171)
  • Fixed the “restore-sg4-config” command not restoring the static-route-table in a 4x or 5x configuration. SR 2-283894542 (B#136270)
  • Fixed RST packets from the ProxySG not be routed using stored return-tosender or trust-dest-mac information. SR 2-290829559 (B#137803) URL Filtering
  • Fixed high CPU utilization as often as every five minutes due to complete database rebuilds during BCWF auto updates. SR 2-286628122 (B#138242) Windows Media
  • Fixed a page fault in the "HTTP CW BC891EC0" process in "http.dll" caused by parsing corrupted HTTP Pragma headers during

 

Documentation

SG 5.4.4.1 Release Notes

Known Issues


Access Logging

  • Uploading FTP client Access Logs to an FTP server fails after changing or toggling between the new and old FTP server IP address on SGOS 5.4.3.3. SR 2-290660564 (B#138833)

ADN

  • Due to a truncated stream issue, the "Tunnel improperly closed" error message is displayed in the session log for CIFS connections that are being accelerated from the edge proxy. SR 2-271326683 (B#136392)

Authentication

  • ProxySG does not use the BCSI_USERNAME value returned by SiteMinder. SR 2-283351865 (B#137658)
  • Using LDAP protcol version 3 on Windows Server 2008 for LDAP authentication causes a software restart in the “LDAP Authenticator" process in "authenticator.dll" at .text+0x7d7e6. SR 2-295259481, 2-296420805 (B#138984)
  • A redirect limitation in Internet Explorer 7.0 and 8.0 causes the 'Page cannot be displayed' message to appear on client machines until the page is manually refreshed. SR 2-294830476 (B#139377)

FTP

  • ProxySG ftp-proxy sends either a PASV or PORT in between the REST and subsequent RETR (or STOR), and the REST is ignored, resulting in the entire file being downloaded from the beginning, instead of just the missing portion specified in the REST. SR 2-277260002 (B#136369)

Management Console

  • Any changes done with the WCCP configuration interface overwrites any Text Editor configurations. (Limitation) SR 2-293602131 (B#138424)

Policy

  • When the virus detect option is enabled in the web access layer and specific URL categories have an allow rule, users are denied access to URLs in the allowed URL categories. SR 2-291267292 (B#137928) TCP/IP and General Networking
  • Until the default gateway is pinged from SG CLI, and unrecognized host/ address, or protocol error is received when attempting to ping hosts with static route defined. SR 2-207446592, 2-282960991 (B#126775) SSL
  • OpenSSL does not properly associate renegotiation handshakes with an existing connection, causing a security vulnerability. SR 2-239523102, 2- 252882082, 2-279446222, 2-294222663 (B#136944)

VPM

  • Unable to install LDAP username through VPM policy when using the sequence authentication (IWA+LDAP), which can be installed by using the LDAP realm only. (B#137588)

Release Schedule

Released 06/01/2010


Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
 
 
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.
 
 

Your response will be used to improve our document content.

Ask a Question