AFSIM 2.7 - 30 Oct 2020

Visit the AFSIM 2.7 Release Page on DI2E (Access Controlled) for more information and resources related to this release.

Release Dates

  • AFSIM 2.7.3 - 24 Sep 2021

  • AFSIM 2.7.2 - 12 Mar 2021

  • AFSIM 2.7.1 - 19 Nov 2020

  • AFSIM 2.7.0 - 30 Oct 2020

Security Updates

  • (2.7.4) Addressed multiple security vulnerabilities in the following third party libraries: (AFSIM-1817)

    • Curl: CVE-2020-8285, CVE-2020-8286, CVE-2021-22876, CVE-2021-22890, CVE-2020-8284

    • Libtiff: CVE-2020-35524, CVE-2020-35523, CVE-2020-35522, CVE-2020-35521

    • Jpeg: CVE-2020-14152, CVE-2020-14153

    • FFmpeg: CVE-2019-15942, CVE-2020-14212, Multiple “Denial of Service” and “Buffer Overflow” CVEs (AFSIM-1404)

    • Qt: CVE-2020-17507

  • (2.7.3) Corrected several buffer and integer overflow issues identified by Fortify static code analysis as being high severity.

  • (2.7.3) Corrected several type mismatch (signed to unsigned) issues throughout the codebase identified by Fortify static code analysis as being high severity, fully resolving this category of issues.

  • (2.7.2) Addressed multiple security vulnerabilities in SDL by updating from version 2.0.7 to 2.0.14. Affects Warlock only. (AFSIM-962)

    • CVE-2019-7572, CVE-2019-7573, CVE-2019-7574, CVE-2019-7575, CVE-2019-7576, CVE-2019-7577, CVE-2019-7578, CVE-2019-7635, CVE-2019-7636, CVE-2019-7637, CVE-2019-7638, CVE-2019-13616, CVE-2019-13626, CVE-2019-14906, CVE-2020-14409, CVE-2020-14410

  • (2.7.3) Corrected a memory leak in the kinematic trajectory model of WSF_TSPI_MOVER.

  • (2.7.3) Corrected a potential memory leak that could occur in certain conditions when using a route_network.

  • (2.7.2) Corrected some memory leaks within XIO and the packetio library exposed through the script method WsfXIO.Subscribe. (AFSIM-951)

  • (2.7.1) Resolved potential memory leaks due to thread safety issues in the terrain model. (AFSIM-312)

Changelogs