Citrix ADC Release (Feature Phase) 14.1 Build 34.42

IMPORTANT

• Build 14.1-25.53 and later builds address the security vulnerabilities described in CTX677944 and CTX677998.
• Build 14.1-25.56 and later builds address the security vulnerabilities described in CTX678072. This build replaces 14.1-25.53.
• Build 14.1-12.35 and later builds address the security vulnerabilities described in CTX584986.
• Build 14.1-8.50 and later builds address the security vulnerabilities described in CTX579459.
• Build 14.1-4.42 and later builds address the security vulnerabilities described in CTX561482 and prior bulletins.

Release Notes Citrix ADC

For detailed documentation for the release refer to Citrix ADC 14.1

Note to SDX Customers

Citrix ADC image file name format has changed starting from 12.0 release as explained this example:

New name format: build-14.1-4.42_nc_64.tgz

Equivalent old format build-14.1-4.42_nc.tgz

Upgrading of Citrix ADC instance to 13.0 using SVM GUI in older SVM versions will not work. Please use the workaround below :

• SVM 11.1 version prior to 55.x or any version of 11.0 or 10.5: Rename 13.0 Citrix ADC image file name to old format as per the example above.

Supported Citrix ADC Platforms

Please refer to CTX113357 for updates on the Citrix ADC Hardware/Software Compatibility Matrix.

Please Note

From 12.1 release, the following weak ciphers are removed from the DEFAULT_BACKEND cipher group. DEFAULT_BACKEND cipher group is bound by default to the SSL, SSL_TCP, SIP_SSL, SSL_Diameter and SSL_FIX services on NetScaler.

• SSL3-DES-CBC-SHA
• SSL3-EXP-DES-CBC-SHA
• SSL3-EXP-RC2-CBC-MD5
• SSL3-EDH-DSS-DES-CBC-SHA
• TLS1-EXP1024-DHE-DSS-DES-CBC-SHA
• SSL3-EXP-EDH-DSS-DES-CBC-SHA
• SSL3-EDH-RSA-DES-CBC-SHA
• SSL3-EXP-EDH-RSA-DES-CBC-SHA
• TLS1-EXP1024-RC2-CBC-MD5
• SSL3-ADH-DES-CBC-SHA
• SSL3-EXP-ADH-DES-CBC-SHA