KeeneticOS 3.6
KeeneticOS 3.6.12
21/10/2021
Fixed
Fixed a nasty bug that caused KeeneticOS to crash and device to reboot during the update availability check under certain conditions. [NDM-1830]
KeeneticOS 3.6.11
01/09/2021
Fixed
Adjusted the transmission power of Wi‑Fi
EAPoL
frames to address random connectivity issues. [SYS-293]
KeeneticOS 3.6.10
20/07/2021
New
Fixed
Fixed the procedure for Extender acquisition to the Mesh Wi‑Fi System under certain conditions. [NDM-1775]
KeeneticOS 3.6.9
08/07/2021
Improved
We deployed a new firmware signing certificate to the cloud infrastructure to strengthen the security of KeeneticOS updates. [SYS-314]
Fixed
Wi‑Fi signal power level setting now operates correctly. [SYS-311]
Fixed the display of spatial streams (1x1/2x2) for connected 802.11n wireless clients. [SYS-313]
Fixed
Basic MCS Map
settings for theVHT Operation IE
section in Wi‑Fi radio frames for two spatial Wi‑Fi streams, providing correct information for connected wireless clients. [SYS-306]
KeeneticOS 3.6.8
28/06/2021
New
Improved
Updated
Curl
daemon to7.77.0
version, which fixes the CVE-2021-22897, CVE-2021-22898, CVE-2021-22901 vulnerabilities.
Fixed
Improved the
RSSI
value handler in the Wi‑Fi wireless driver to fix the Band Steering algorithm operation. [SYS-292]
KeeneticOS 3.6.6
27/05/2021
Improved
Patched a collection of security vulnerabilities called FragAttacks (Fragmentation and Aggregation Attacks). [SYS-276, SYS-277, SYS-278, SYS-280, SYS-282, SYS-283]
CVE-2020-24586 — fragment cache attack (not clearing fragments from memory when (re)connecting to a network).
CVE-2020-24587 — mixed key attack (reassembling fragments encrypted under different keys).
CVE-2020-24588 — aggregation attack (accepting non-SPP A-MSDU frames).
CVE-2020-26139 — forwarding EAPOL frames even though the sender is not yet authenticated (should only affect APs).
CVE-2020-26146 — reassembling encrypted fragments with non-consecutive packet numbers.
CVE-2020-26147 — reassembling mixed encrypted/plaintext fragments.
CVE-2020-26140 — accepting plaintext data frames in a protected network.
The security issue CVE-2020-15078 of the OpenVPN client and server system component.
Fixed
Internet connection status detection for the 4G/3G modems with disabled Ping Check service. [NDM-572]
Internet safety policy operation after re-establishing a PPPoE (PPP over Ethernet) connection to the Internet. [NDMS-1420, NDMS-1485]
Fixed the Media Server application for handling multiple simultaneous requests from different DLNA clients. [NDMS-227]
The Download station interface localization now follows correctly the selected language of the Web Interface. [NDMS-1541]
KeeneticOS 3.6.4
This is the initial shipping release for Keenetic Hero (KN-1011).