Zywall USG FLEX Series & ATP Series - V5.39Patch 0 Firmware Release

Zyxel_Melen · September 3

Zywall USG FLEX Series & ATP Series Release Note

(Click the hyperlink to find the firmware file directly)

S=Standalone mode, C=Cloud mode

New Feature and Enhancements	S	C
1. CLI created to enable "Drop TCP SYN packets with data". Router(config)# [no] malform-packet-check tcp destination-port [any \| eq <1..65535>] payload-size <1..65535> show malform-packet-check status Note: In rare cases, some TCP service may be affected after enabling "Drop TCP SYN packets with data" feature	V	-
2. Optimize URL Threat Filter/Content Filter scan flow to avoid unnecessary inspections.	V	-

S=Standalone mode, C=Cloud mode

Bug fix	S	C
1. eITS#240401350, 240401693, 240501058, 240701813 a. Content Filtering is not working because TLS 1.3 Kyber support is introduced in Chrome.	V	-
2. eITS#240501893 a. Device becomes unresponsive after interface is disabled in device HA.	V	-
3. eITS#240600228 a. SSL inspection can't work within latest Chrome version.	V	-
4. eITS#240700190 a. Unable to backup configuration file from SecuManager	V	-
5. eITS#240701292 a. Mitigation for CVE-2024-42057	V	-
6. eITS#240301525 a. Controller pushed VLAN settings to AP but not updated.	V	-
7. eITS#240400026 a. Unable to load the Station Top N page.	V	-
8. eITS#240400683 a. Controller pushed settings to AP issue.	V	-
9. eITS#240500682 a. Device unresponsive after changing MAC-filter settings.	V	-
10. Common vulnerabilities and Exposures: ZLD5.39 Patch0 is no longer vulnerable to the following CVE References: -CVE-2024-3596 -CVE-2024-6343 -CVE-2024-6387 -CVE-2024-7203 -CVE-2024-42057 -CVE-2024-42058 -CVE-2024-42059 -CVE-2024-42060 -CVE-2024-42061	V	V

Please refer to the Download Link for more details.