This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

XIQ OnPrem / IQVA New Release

XIQ OnPrem / IQVA New Release

Go to solution
daniel1
Contributor

‎09-01-2022 04:17 AM

Hi,

can anyone from Extreme tell me, when you plan to release a new feature version of XIQ OnPrem?

This is getting ridiculous, no big feature update for one and half year, we still have to use 21.1.x, so January 2021 version according to your scheme.

2 ACCEPTED SOLUTIONS

Go to solution
BillL
Extreme Employee
In response to daniel1

‎10-21-2022 06:13 AM

Hello,

Allow me to simplify.  As the bulletin says, "In certain configurations, an attacker could execute arbitrary commands with the privileges of the script."  In IQVA, yes, c_rehash is present. However, IQVA does not use it in any process, the configurations required for exploit are non-existent, and access to the OS in any capacity to expose it is not exposed.   Several other CVE's are being tackled in the January release, specifically CVE-2021-4034.   And no, the January release is not a joke, and is currently tracking as follows:

  • Dev Start:  (after 22r7 in cloud). on or about 11/15
  • Dev Complete:  12/15 (4w development time)
  • QA Test: 3w beginning in early January
  • GA Available:  end of January

 

Bill Lundgren, Distinguished Engineer
Portfolio Architect - Architecture, Security and Compliance
Extreme Networks

View solution in original post

0 Kudos

Go to solution
BillL
Extreme Employee
In response to daniel1

‎02-23-2023 07:02 AM

@daniel1  I just spoke to the team that's doing it and you should see it in the next week or so.   QA testing is complete, the final build approved, and release notes should be finalized today (2/23).  Then we just have to work to get it posed. 

Bill Lundgren, Distinguished Engineer
Portfolio Architect - Architecture, Security and Compliance
Extreme Networks

View solution in original post

0 Kudos
11 REPLIES 11

Go to solution
daniel1
Contributor
In response to systemscsn

‎04-18-2023 11:08 PM

@systemscsn We didn't know it in the first place, that it's getting a nightmare, because we got fooled by their sales team, promising that OnPrem is "just" half a year behind the cloud version, when it actually became 1.5 to 2 years.

Now we're forced to move to cloud, because Extreme is unable to provide an awesome appliance like VMware does with its vCenter.

But thanks for your words.

0 Kudos

Go to solution
juergen_dannewi
New Contributor III

‎09-01-2022 04:29 AM

Hi Daniel,

we get the information from our support that IQ VA is
End of Sale at 1st Dec 2022,
End of Major Support 1st Dec 2023 and
End of Support 1st Dec 2025.
I personally doesn´t expect any software releases anymore.

We are also using the On-Prem version and are checking our options now.
Upgrade or developer change until 2025.

0 Kudos
GTM-P2G8KFN