[ale] More on QNAP

Raj Wurttemberg rajaw at c64.us
Fri Apr 2 23:34:12 EDT 2021


meh...  I read the article and...

"It seems current, non-legacy hardware running firmware prior to QTS
4.5.2.1566 (build 20210202) and QTS 4.5.1.1495 (build 20201123) may also be
vulnerable to the remote code execution bug and should be patched with QTS
4.5.2.1566 (ZIP) or QTS It seems current, non-legacy hardware running
firmware prior to QTS 4.5.2.1566 (build 20210202) and QTS 4.5.1.1495 (build
20201123) may also be vulnerable to the remote code execution bug and should
be patched with QTS 4.5.2.1566 (ZIP) or QTS 4.5.1.1495 (ZIP), as applicable.
(ZIP), as applicable."

Version 4.5.1.1495 was released waaay back in November.   Version 4.5.2.1566
was released at the beginning of February.  I try to keep all of the QNAPs I
manage updated.  This is a non-issue for me.

Thanks,
/Raj

> -----Original Message-----
> From: Ale <ale-bounces at ale.org> On Behalf Of DJ-Pfulio via Ale
> Sent: Friday, April 2, 2021 8:37 PM
> To: Atlanta Linux Enthusiasts <ale at ale.org>
> Cc: DJ-Pfulio <DJPfulio at jdpfu.com>
> Subject: [ale] More on QNAP
> 
> Feels like groundhog day to me.
> 
> Remember last month when a QNAP firmware upgrade was suggested here?
> Seems QNAP didn't fix all the issues reported last fall.
> https://www.theregister.com/2021/04/02/qnap_bug_nas/
> These are the best sort of bugs - remote code execution.
> Everyone loves a good RCE.  Ok, maybe not everyone.
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> https://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo



More information about the Ale mailing list