| Issue | Service Request | Description |
|---|
| 42629 | NONE | Under rare circumstances it is possible for the ProxySG to restart with signature (Hdw: 0x2 Sfw: 0x19 Pgflt: 0x0 - Find_src_IP_bypass_addr()) if dynamic bypass is enabled and rapid insertions of entries is taking place. |
| 43402 | 1-7462430 | Browser pop-up blockers were preventing patience pages from lauching, resulting in object download failures. |
| 44002 | 1-8022481 | The rewriting of absolute URLs does not work inside of an embedded javascript. |
| 44255 | 1-9207184 | Accesslog does not log "QUIT" for cs-method field on closing connection with FTP server. |
| 44518 | 1-7026671 | Provide a global configuration option to not buffer HTTP responses that do not adhere to HTTP length specifications. |
| 44617 | 1-7163451, 1-8553634 | Resolve a pagefault restart in HTTP SW in "http.dll" at .text+0x5FDC1. |
| 44730 | 1-7076901, 1-7346480, 1-7617431, 1-7857463, 1-8082104, 1-8387451, 1-8476917, 1-9450431, 1-9580451 | Prevent a possible page fault in MMS HTTP ClntW in "cfs.dll" at .text+0xA39. |
| 44748 | 1-7168863 | It was possible for the DNS proxy to leak memory causing an out of memory restart |
| 44775 | 1-6910125, 1-8338014 | Meta tag parsing would occasionally fail for HTML pages that were larger than 1000 bytes. |
| 44840 | NONE | Prevent a page fault at 0x49AAB00 "ce_admin.dll" at .text+0x32D1 when uploading an access log via the service info feature. |
| 44991 | 1-7494643 | The ProxySG was not correctly rewriting embedded relative urls that begin with a question mark. |
| 44992 | 1-7210754, 1-7570599 | It was possible for policy decisions on ftp/telnet transactions to be overridden by policy that requires a server response. |
| 45017 | 1-7635100, 1-8865204 | Prevent a page fault at 0x0 in "HTTP RW" in "http.dll" when parsing an HTTP 407 response. |
| 45063 | 1-7547995 | When using popup blocking, some pages did not render properly in Internet Explorer. |
| 45097 | 1-7340601 | Force_cache(yes) does not work for urls that contain query strings or cookies. |
| 45127 | NONE | Prevent a page fault at 0x8 in "tcpip.dll" at .text+0x9F6A when accessing the dynamic bypass list. |
| 45153 | NONE | Prevent a page fault in "HTTP CW" in "http.dll" at .text+0x5B840. |
| 45161 | NONE | The ProxySG did not properly escape special characters when performing LDAP searches. |
| 45171 | 1-7507676 | Upon expiration of the ProxySG and Siteminder authentication cookies, subsequent user authentication attempts could fail. |
| 45209 | 1-7691193, 1-8689477 | Director policy pushes would fail when using SSH v2. |
| 45244 | 1-7734026 | It was possible for LDAP worker to page fault in cfssl.dll at .text+0x61D2B if the LDAP directory's response resulted in multiple referrals. |
| 45248 | 1-7781660 | CLI users could authenticate without sending a password if the the LDAP directory allowed anonymous binds. |
| 45472 | 1-7163451 | Prevent restart SW: 0x30 in "Kernel.dll" at .text+0x827C when bandwidth-gain mode and icap are enabled |
| 45523 | 1-8149149 | Local bypass list entries for hosts on the local subnet were timing out. |
| 45542 | 1-8187556, 1-8588671 | It was possible for the realm passwd for websense reporter username to be null, resulting in a page fault with process "ALOGAdmin:websense-main" in "authenticator.dll" at .text+0x289EE |
| 45562 | 1-8149384 | It was possible for forms based auth to fail with HTP_INVALID_AUTH_FORM if password contained a '?' |
| 45566 | 1-8178306 | TFTP uploads would fail with some TFTP servers due to the SG adding a leading slash to the filename. |
| 45581 | 1-8782780 | The ProxySG will no longer limit NTLM proxy authentication to a finite list of User-Agents. |
| 45718 | 1-8022488, 1-8371554 | A fragmented POST request for forms based auth submission could result in INVALID_AUTH_FORM |
| 45749 | 1-8000551 | Proxy credentials can be leaked upstream when the authenticate(no) property is used. |
| 45838 | 1-8231485 | FTP proxy clients could receive chunk encoded data when using ICAP. |
| 45878 | 1-8450815 | Prevent an MMS stream fetch failure when the media server's response contained more than 32 packet fragments |
| 45920 | 1-8387763 | The Radius splash generator secret could not be entered via the CLI. |
| 46083 | 1-8179771 | Resolve a Page Fault in "IM_Admin" in "im.dll" at .text+0x4451. |
| 46184 | 1-7035345 | HTTP downloads would continue after client abandonment when bandwidth gain mode is enabled if the patience page was being used. |
| 46263 | 1-8626589, 1-8689805, 1-9357095, 1-9498407 | Resolve a Page Fault in MSN IM Worker in "im.dll" at .text+0x2BDB6. |
| 46370 | 1-8497926 | The access log size reported for service-info was incorrect if the logs were very large. |
| 46445 | 1-8688461 | Prevent RTPS forwarding from failing if a DNS hostname resolution of the target URL did not succed. |
| 46451 | NONE | Prevent a case where categorized HTTPS sites could bypass policy. |
| 46506 | 1-8802916 | Websense Reporter was receiving the NTLM prefix "WinNT" formatted incorrectly. |
| 46522 | 1-8744033 | Support Netware style directory listings for web FTP. |
| 46532 | 1-8635696 | It was possible for VPM to generate url.host= CPL for destination host/port instead of url.domain= |
| 46637 | 1-8535512 | CPU usage could spike in the event of an ICAP server failure. |
| 46723 | 1-8537791 | GigE card does not link up after unplugging the network cable |
| 46726 | 1-8743821 | Prevent ProxySG from displaying SEVERE_ERROR on syslog when logging in via SSH |
| 46733 | 1-8864778 | Prevent page fault in process "HTTP SW in "http.dll" at .text+0x52468 |
| 46741 | 1-8565556 | Prevent x-bluecoat-websense-user from resulting in a null value when a LDAP realm in a sequence realm is used to authenticate Proxy users. |
| 46784 | 1-8656209 | When a Socks UDP Associate was performed to the ProxySG virtual ip address, the Proxy SG would respond with the IP address of the network interface instead of the vip. |
| 46910 | 1-7912959 | Add support to allow global configuration of TTL for DNS negative caching. |
| 46967 | 1-9202976 | Forwarding rule is not converted properly when invoking upgrade from SG 2.1.10 to SG 3.2.3 |
| 47012 | 1-9055096 | RTSP proxy selects RDT as transport protocol when Helix server sends live broadcast using RTP. |
| 47080 | 1-8248481, 1-8471981, 1-8898959, 1-9031595 | After an upgrade to SG3.2.x, prevent ProxySG from sending websense log v1 records while negotiating log v3. |