Refer to the following sections for change notices relating to this release.

Non-FIPS OpenSSL Updated to Version 1.1.1u

The version of OpenSSL used in the default (that is, non-FIPS) operating mode has been updated from 1.1.1n to 1.1.1u.

Updating a LoadMaster Running 7.2.54.7 in FIPS Mode

A LoadMaster running LMOS 7.2.54.7 in FIPS mode can only be updated to future LMOS releases that contain the OpenSSL 3 FOM. An attempt to update a LoadMaster running 7.2.54.7 in FIPS mode with an LMOS image from any release that uses the previous version of the OpenSSL FOM (1.0.2) will fail.

This only applies to FIPS mode operation. Systems running in non-FIPS mode can be updated to any supported release as described in the Updating the LoadMaster Software Technical Note.

LoadMaster can be returned to the release that was running prior to the update to 7.2.54.7 by switching back to the previously installed partition using the System Configuration > System Administration > Update Software > Restore Software button. Please be sure to take a backup of your system before restoring the previous partition. This can be used to, for example, help you to repeat on the restored partition any configuration changes you had made while running 7.2.54.7.

Exchange 2016 Running on Windows 2012 Incompatible with FIPS Mode

Older versions of the FIPS product supported secure re-encrypted connections to back-end real servers running Exchange 2016 on a Windows 2012 server. With the move to OpenSSL 3 in this release, re-encryption with this configuration is no longer supported, because the ciphers offered by the FIPS Object Module do not match the ciphers available in the Windows configuration.