The CloudRouter 2.0 Beta release has been focused on expanding CloudRouter’s capabilities, ensuring it remains at the forefront of Software Defined Networking (SDN) technologies, as well as improving stability and security. The following components have been added:
Mininet - A tool for creating realistic virtual networks for development, testing and research
FastNetMon - A high performance DoS/DDoS load analyzer for security management
CoreOS rkt support - A composable, secure, and fast CLI for running containers
ExaBGP - A lightweight BGP routing daemon
In addition to the new features, this release has also improved several existing components. The entire CloudRouter package has now been rebased from Fedora 20 to Fedora 22. This release also includes OpenDaylight Lithium and ONOS Cardinal, the latest versions of two core SDN technologies. This also means Java has now been upgraded to version 1.8, bringing increased performance and security improvements for both OpenDaylight and ONOS.
CloudRouter 2.0 beta incorporates patches for several security vulnerabilities:
[Moderate] CVE-2015-3414 CVE-2015-3416: OpenDaylight SQLite memory corruption leading to DoS and possible code execution
[Moderate] CVE-2015-4000: OpenDaylight LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks
[Low] CVE-2015-1857: OpenDaylight information disclosure
For more details, please see:
The following bug fixes have been applied to CloudRouter 2.0 Beta. A detailed list of bug fixes will be presented in the final release notes.