Hi, We're currently running 2X ApplicationServer 10.6 and we use secure gateway. I just ran the HeartBleed test found here: http://filippo.io/Heartbleed/ And it reports our 2X server as being vulnerable. Is this fixed in the latest version? If it is then we will apply the upgrade ASAP. If not, will it be fixed soon? Cheers, Iain.
I reported the issue to the support staff yesterday. Here's what I've been told: http://2x.helpserve.com/Knowledgebase/Article/View/187 It's really unacceptable for this patch to take this long.
I've also been trying to get a response from 2X. No response at all to any tickets raised or the "online chat" but I was able to get hold of a guy working in the support dept in Dallas, TX. I was told that a patch (not a new build) would be released earlier today but clearly that's not happened. Given how well documented both the problem and the required fix are I find it hard to understand why 2X are so slow to respond. Any other servers/products we had that were affected were patched within a few hours. Very worrying but turning off remote access via 2X is simply not an option for us so we can only sit and wait. As nescorp says, really not acceptable.
Hello everyone We have released new builds to address this issue. ApplicationServer XG version 10.6: http://www.2x.com/downloads/builds/applicationserver/10.6.1558 ApplicationServer XG version 11.0: http://www.2x.com/downloads/builds/applicationserver/11.0.1933 ApplicationServer XG version 11.1 will be released with the fix included. Kindly ensure you download and install the version allowed by your license key.
