Original Publication Date: 04/18/2014
In April 2014, Apple posted the release of the iOS Edge Client version 2.0.2. This release patches the Heartbleed bug (OpenSSL CVE-2014-0160). Users should download this new version from the app store.
There are no new features in version 2.0.2.
|455221||In some circumstances the tunnel connects but cannot pass traffic. If the problem persists the device must be rebooted.|
|456345||This patches a vulnerability (CVE-2014-0160) with some OpenSSL versions, also known as Heartbleed, that could reveal up to 64k of encrypted memory.|
There are no fixes in version 2.0.1.
|427862||Previously, when a user hit a redirect ending using Web Logon mode on the iOS Edge Client, the redirect was not correctly completed by the client. Now the redirect completes correctly in Web Logon mode.|
Starting in iOS 7, the system prevents an app from accessing log entries at the kernel level, and from other apps. As a result, the log Edge-Client-Console.log is no longer sent as part of the troubleshooting log files.
In order to view the system console log entries, a user must connect the device to a PC or Mac, and use the iPhone Configuration Utility.
|431354||Previously, when a client certificate was deleted from the iOS device certificate store, and the certificate was used in an Edge Client configuration, there was no warning to the user when attempting to connect with the configuration. Now, a warning is displayed when the certificate is missing.|
There were no fixes in 1.0.6
|383083||Previously, when sending an Edge Client command through a URL, the Edge Client prompted the user for confirmation of any change. At present, the user is prompted only when creating a new server configuration on the Edge Client.|
|383086||The Disconnect Idle Timeout setting is now configurable through server settings in Access Policy Manager version 11.4, and set to 120 seconds for other server versions.|
|384830, 400979, 408517, 412478, 418457||Some vulnerabilities were fixed and improvements made, in handling of OpenSSL libraries, SSL renegotiation, TLS, and DTLS.|
|386713||Previously, a default IPv6 route was added when split tunneling was enabled. This route was used only if the client had no IPv6 configuration, but should have been inactive. At present, default IPv6 tunnels are inactive.|
|387521||Previously, specifying a route of 0.0.0.0/0.0.0.0 did not correctly force all traffic through the tunnel on iOS devices. At present, specifying such a route forces all traffic through the tunnel on iOS devices.|
|397177||Memory handling issues were fixed.|
|399931||Some screen alignment issues were fixed.|
|399938||Previously, if the Edge Client started an access policy that had no Logon Page access policy item, a blank page appeared in the Edge Client. At present, if the access policy does not include a Logon Page item, a blank page does not appear in Edge Client.|
|400144||Some wording errors were fixed in the client.|
|417727||Previously, if the Edge Client connected to a server that did not support IPv6, and the option Force all traffic through tunnel was enabled on the network access tunnel, IPv6 traffic was not blocked. At present, IPv6 traffic is not allowed by the client when the server does not support IPv6, and Force all traffic through tunnel is enabled.|
|419598||Previously, when using a managed Edge Client configuration created by MDM or iPCU, users could not enter passwords or user names, even when required. At present, user names and passwords can be entered in such configurations.|
For additional information, please visit http://www.f5.com.
You can find additional support resources and technical documentation through a variety of sources.
Free self-service tools give you 24x7 access to a wealth of knowledge and technical support. Whether it is providing quick answers to questions, training your staff, or handling entire implementations from design to deployment, F5 services teams are ready to ensure that you get the most from your F5 technology.
AskF5 is your storehouse for thousands of solutions to help you manage your F5 products more effectively. Whether you want to search the knowledge base periodically to research a solution, or you need the most recent news about your F5 products, AskF5 is your source.
The F5 DevCentral community helps you get more from F5 products and technologies. You can connect with user groups, learn about the latest F5 tools, and discuss F5 products and technology.