FIRMWARE CHANGE HISTORY ----------------------- IBM Flex System Interconnect Fabric version 7.8.11.0 (Released July 2015) ** Changes since the 7.8.10.0 release ** Enhancements: none Changes: - Additional Debug information has been added to the flash dump to gather internal timer information. (XB269085) Fixes: - FC port would send out FIP Advertisements despite FIPS being disabled on the port. Users will now be prevented from disabling FIPS and/or FCF mode on an FC port. (LV300602) - The mapping between local and remote ports is incorrect when using standard LLDP MIBs. The same is not true for private LLDP mibs (lldpInfoRemoteDevicesTable). (XB299432) - Configuration of an ipv6 Link Local Address as default gateway on management interface from the CMM would fail. (LV306988) - User configured ACLs would fail to drop subnet directed ping. (LV295376) - When using SSH the System notice was not being displayed before the login challenge phrase. (LV309949) - Inserting an unsupported transceiver could cause port link down to remain even after inserting a supported DAC cable. (LV310839) - Fixed OpenSSL vulnerabilities as reported in CVE Advisories CVE-2015-0286 (ASN1_TYPE_cmp). ================================================================================ IBM Flex System Interconnect Fabric version 7.8.10.0 (Released March 2015) ** Changes since the 7.8.8.0 release ** Enhancements: none Changes: - Fixed OpenSSL vulnerabilities as reported in CVE Advisories CVE-2014-3572, CVE-2015-0204, CVE-2014-8275, CVE-2014-3570. - Fixed security vulnerabilities as reported in CVE Advisories CVE-2014-0191 (libxml2), CVE-2013-2877 (libxml2), CVE-2014-3660 (libxml2), CVE-2013-2566 (RC4 algo, TLS protocol) Fixes: - VLAG ports would stay in err-disabled state despite expiration of the Startup Delay Interval, if they were members of L2 failover group. (LV299952) - Switch would crash when it receives a gratitous ARP request for an IP address that was configured on the switch. (LV301785) ================================================================================ IBM Flex System Interconnect Fabric version 7.8.8.0 (Released November 2014) ** Changes since the 7.8.7.0 release ** Enhancements: LACP Individual Mode -------------------- When this feature is enabled on an LACP port-channel, if a member port of the port-channel does not receive any LACPDU over a period of time, it will be treated as a normal port which may forward data traffic according to its STP state. Changes: none Fixes: - FCoE sessions could flap due to the High CPU Utilization caused by the software flooding of Clear Virtual Links packets with an unknown destination MAC in the FCoE VLAN. (LV296464) - Configuration changes could be denied with the error "Error: STP cannot be enabled on FC port .", if any vlan assigned to a fiber channel port is a member of a MSTP instance. (X294677) ================================================================================ IBM Flex System Interconnect Fabric version 7.8.7.0 (Released September 2014) ** Changes since the 7.8.6.0 release ** Enhancements: none Changes: none Fixes: - Ports INTB1 & INTB2 would be disabled, when CMM failover occurs due to loss of physical connectivity on the active CMM link. (XB172285) - CMM could incorrectly report the switch to be offline for about 30 seconds at boot up, after failing to query switch information. A notificatin "communication offline" shows up on the CMM UI during this time, and is cleared once the CMM establishes communication to the switch. (XB268099) - Fixed OpenSSL vulnerabilities as reported in CVE Advisories CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509,CVE-2014-3510, CVE-2014-3511. (XB293143) - FCOE sessions would flap at random and the message "Could not read FC module temperature" would be logged due to deadlock on the I2C bus shared between Ehternet and Fiber Channel modules. (XB281638) - Receive FCS Errors would be reported on ports EXT1 and EXT2 when using 7m or longer passive DAC cables due to incorrect firmware settings.The "Receive FCS Error Frame Counter" would increase on these ports. (XB280713) - Changes to configuration are denied with the error "Error: Ports x and y have the same LACP admin key but different link settings (speed/duplex/flowcontrol).", when links x and y with dissimilar cables (i.e DAC and SFP+) are aggregated. (XB282364) - All FCOE FIP solicitation messages were tied to the lowest numbered port in the NPV Vlan, even when no FCF ports were online in the NPV Vlan. (XB290563) - A crash would occur after multiple failed attempts to login via SSH or BBI, if secure-backdoor is enabled and the configured remote RADIUS/TACACS authentication servers can be reached . (XB293746,XB292790) - Secure-backdoor access to the switch fails via SSH, when configured remote RADIUS/TACACS authentication servers can be reached. (XB293743,XB294261) - Secure-backdoor and backdoor access to the switch via SSH, fails to prompt for username. (XB292116,XB293076) - Saved IP Gateway configuration is lost upon reload or upon issuing "copy" commands when associated IP interface is deleted. (XB274331) - A crash would occur when hotlinks active interface is disabled and enabled in quick succession. (XB278024) - Executing "copy tech-support" family of commands could result in instability in the stack and cause FCOE sessions to flap. (XB274963,XB274963) - The internal/external controlled ports from all units other than the master remain down post reload, in a L2 Failover AMON/MMON scenario. (XB275310,XB277583,XB277982) - Changes to configuration are denied with the error "Error Ports ... have the same LACP admin key but different STP edge settings" after a non-existing VLAN is added to a port , if LACP and STP edge/portfast are both enabled on the port. (XB282083) ================================================================================ IBM Flex System Interconnect Fabric version 7.8.6.0 (Released July 2014) ** Changes since the 7.8.5.0 release ** Enhancements: None Changes: - Internal debug usernames have been removed from the firmware to prevent potential backdoor access. (XB282666) Fixes: None ================================================================================ IBM Flex System Interconnect Fabric version 7.8.5.0 (Released June 2014) ** Changes since the 7.8.4.0 release ** Enhancements: None Changes : - A security vulnerability existed in the OpenSSL Protocol that is used in IBM System Networking Ethernet Switches. (CVE-2014-0224) Fixes : None ======================================================================================== IBM Flex System Interconnect Fabric version 7.8.4.0 (Released June 2014) Initial Release of IBM Flex System SI Fabric.