QTS 4.3.4.1190 build 20200107

Welcome note and must-know for QNAP Forum members.
Post Reply
abbychou
Starting out
Posts: 38
Joined: Fri Oct 05, 2018 2:22 pm

QTS 4.3.4.1190 build 20200107

Post by abbychou » Mon Jan 13, 2020 10:25 am

QTS 4.3.4.1190 build 20200107

Download links:
https://download.qnap.com

/Storage/TS-1269U/TS-1269U_20200107-4.3.4.1190.zip
/Storage/TS-269/TS-269_20200107-4.3.4.1190.zip
/Storage/TS-469U/TS-469U_20200107-4.3.4.1190.zip
/Storage/TS-569/TS-569_20200107-4.3.4.1190.zip
/Storage/TS-669/TS-669_20200107-4.3.4.1190.zip
/Storage/TS-869/TS-869_20200107-4.3.4.1190.zip
/Storage/TS-869U/TS-869U_20200107-4.3.4.1190.zip
/Storage/TS-469/TS-469_20200107-4.3.4.1190.zip

Release note:

QTS 4.3.4.1190 build 20200107

[Compatibility]
- QTS 4.3.4 is the final available firmware update for the following models: TS-1269U-RP, TS-869U-RP, TS-469U-RP, TS-469U-SP, TS-869 Pro, TS-869L, TS-669 Pro, TS-669L, TS-569 Pro, TS-569L, TS-469 Pro, TS-469L, TS-269 Pro, TS-269L.

[Important Notes]
- To ensure system stability, QNAP recommends updating and then restarting QVPN Service in App Center after you update QTS to 4.3.4.
- For the status of QTS updates and maintenance for your NAS model, visit https://www.qnap.com/en/product/eol.php
- When QTS 4.3.x is installed on NAS models running on 64-bit Intel and AMD processors, some applications may not be supported. To check if installed apps on your NAS are compatible with QTS 4.3.x, download the QTS 64-bit compatibility tool and install it on your current QTS build. (https://download.qnap.com/QPKG/CF64_0.1-1114.qpkg.zip)
- Starting from QTS 4.3.4, QNAP NAS devices no longer support creating storage pools or static volumes using NVMe PCIe/M.2 SSDs. However, this limitation does not apply to the SSDs installed in built-in M.2 slots or on QM2 expansion cards.
- Below are the kernel versions for NAS models that are supported by QTS 4.3.4: Kernel 3.4.6: TS-x69, TS-x69U, TS-x69L.

[Fixed Issues]
- Fixed a command injection vulnerability (CVE-2018-19949).
- Fixed a stored cross-site scripting vulnerability in user description (CVE-2018-19953).
- Fixed a stored cross-site scripting vulnerability in File Station (CVE-2018-19943).
- Fixed a vulnerability in OpenSSH (CVE-2018-15473).
- Fixed multiple vulnerabilities in PHP: arbitrary command injection (CVE-2018-19518), denial of service (CVE-2018-19935), and heap buffer over-read (CVE-2018-20783).
- Fixed a vulnerability concerning PHP unsupported version detection.

Post Reply

Return to “Announcements”