AFSIM 2.8 - 11 Mar 2021

Visit the AFSIM 2.8 Release Page on DI2E (Access Controlled) for more information and resources related to this release.

Release Dates

  • AFSIM 2.8.2 - 22 Oct 2021

  • AFSIM 2.8.1 - 29 Sep 2021

  • AFSIM 2.8.0 - 11 Mar 2021

Security Updates

  • (2.8.2) Addressed multiple security vulnerabilities in the following third party libraries: (AFSIM-1817)

    • Curl: CVE-2020-8285, CVE-2020-8286, CVE-2021-22876, CVE-2021-22890, CVE-2020-8284

    • Libtiff: CVE-2020-35524, CVE-2020-35523, CVE-2020-35522, CVE-2020-35521

    • Jpeg: CVE-2020-14152, CVE-2020-14153

    • FFmpeg: CVE-2019-15942, CVE-2020-14212, Multiple “Denial of Service” and “Buffer Overflow” CVEs (AFSIM-1404)

    • Qt: CVE-2020-17507

  • (2.8.1) Corrected several buffer and integer overflow issues identified by Fortify static code analysis as being high severity.

  • (2.8.1) Corrected several type mismatch (signed to unsigned) issues throughout the codebase identified by Fortify static code analysis as being high severity, fully resolving this category of issues.

  • Addressed multiple security vulnerabilities in SDL by updating from version 2.0.7 to 2.0.14. Affects Warlock only. (AFSIM-962)

    • CVE-2019-7572, CVE-2019-7573, CVE-2019-7574, CVE-2019-7575, CVE-2019-7576, CVE-2019-7577, CVE-2019-7578, CVE-2019-7635, CVE-2019-7636, CVE-2019-7637, CVE-2019-7638, CVE-2019-13616, CVE-2019-13626, CVE-2019-14906, CVE-2020-14409, CVE-2020-14410

  • (2.8.1) Corrected a memory leak in the kinematic trajectory model of WSF_TSPI_MOVER.

  • (2.8.1) Corrected a potential memory leak that could occur in certain conditions when using a route_network.

  • Corrected some memory leaks within XIO and the packetio library exposed through the script method WsfXIO.Subscribe. (AFSIM-951)

  • Resolved potential memory leaks due to thread safety issues in the terrain model. (AFSIM-312)

Changelogs