Download: http://xvtx.ru/xwrt/download.htm
Changelog: [Mark changes from 380.68_4]
CODE
380.69 (11-Dec-2017)
- NEW: Added option to disable the Asus NAT tunnel service under
Other Settings -> Tweak. Not quite sure what this
partly closed source service is for, but it eats a
fair amount of CPU and RAM (backport from 382)
- CHANGED: Updated odhcp6c to be in sync with upstream
(patch by theMIRon)
- CHANGED: Updated libogg to 1.3.3 and libvorbis to 1.3.5.
- CHANGED: Updated wget to 1.19.2 (fixing connectivity to some
TLS 1.2 servers)
- CHANGED: Updated RT-N66U and RT-AC66U SDK to GPL 380_8120's
(fixing KRACK in repeater/bridge mode)
- CHANGED: Updated openssl to 1.0.2n.
- CHANGED: Updated tor to 0.2.9.14.
- FIXED: allow IA_NA mode downgrade with forced IA_PD
(for ISPs with broken IPv6 support)
(patch by theMIRon)
- FIXED: Trend Micro signature check might randomly fail the
RSA validation.
- FIXED: Security issues CVE-2017-15275, CVE-2017-12163
and CVE-2017-12150 (backported to Samba 3.6 and 3.5)
- FIXED: Httpd crash when accessing certain webui pages with
no connected Ethernet clients
- FIXED: DNSFILTER rules would have priority over OPENVPN Client
rules (when client has DNS set to Exclusive mode).
- FIXED: traffic routing from the router itself would fail when
restarting the firewall while using an ovpn client with
policy rules in effect.
- NEW: Added option to disable the Asus NAT tunnel service under
Other Settings -> Tweak. Not quite sure what this
partly closed source service is for, but it eats a
fair amount of CPU and RAM (backport from 382)
- CHANGED: Updated odhcp6c to be in sync with upstream
(patch by theMIRon)
- CHANGED: Updated libogg to 1.3.3 and libvorbis to 1.3.5.
- CHANGED: Updated wget to 1.19.2 (fixing connectivity to some
TLS 1.2 servers)
- CHANGED: Updated RT-N66U and RT-AC66U SDK to GPL 380_8120's
(fixing KRACK in repeater/bridge mode)
- CHANGED: Updated openssl to 1.0.2n.
- CHANGED: Updated tor to 0.2.9.14.
- FIXED: allow IA_NA mode downgrade with forced IA_PD
(for ISPs with broken IPv6 support)
(patch by theMIRon)
- FIXED: Trend Micro signature check might randomly fail the
RSA validation.
- FIXED: Security issues CVE-2017-15275, CVE-2017-12163
and CVE-2017-12150 (backported to Samba 3.6 and 3.5)
- FIXED: Httpd crash when accessing certain webui pages with
no connected Ethernet clients
- FIXED: DNSFILTER rules would have priority over OPENVPN Client
rules (when client has DNS set to Exclusive mode).
- FIXED: traffic routing from the router itself would fail when
restarting the firewall while using an ovpn client with
policy rules in effect.