Skip to content

Overview

This document outlines the fixes included in the HySecure Gateway Security Hotfix OS18 and provides instructions for applying it to the HySecure Gateway.

Applicable On

This is a cumulative security hotfix that includes fixes from security hotfix OS15 onwards and requires security hotfix SF14 to be installed prior to installation.

This hotfix includes fixes for both zero-day vulnerabilities:

Copy Fail (CVE-2026-31431) and Dirty Frag (CVE-2026-43284, CVE-2026-43500).

It can be applied only on the following HySecure Gateway versions, where SF14 is already installed:

  • HySecure Gateway 7.0 Build 648

  • HySecure Gateway 7.0 Hotfix 1 Build 651

  • HySecure Gateway 7.1 Build 157

  • HySecure Gateway 7.1 Service Pack 1 Build 25

  • HySecure Gateway 7.1 Service Pack 2 Build 4

  • HySecure Gateway 7.2 Build 147

  • HySecure Gateway 7.2 Service Pack 1 Build 8

  • HySecure Gateway 7.3 Build 96

Released on: May 28, 2026

Note

This hotfix includes package updates and fixes through May 7, 2026.

Important

  1. Downtime is required while applying this Hotfix.
  2. NTP Server must be configured, and NTP services must be running on all nodes.
  3. Ensure that HySecure Services and Syncing services are running on all nodes in the HySecure management console dashboard.
  4. The license should be active on the gateway before applying the hotfix.
  5. For End-of-Life details, refer to Accops Product Lifecycle.

How to Get the Hotfix

Please visit the link below to download the hotfix:

Security Hotfix - AH_OL9_CM_OS18_7.0_SF14_20260519

MD5 checksum: df0702e3f1e07d486cb22eb81b85f5c0

How to Apply the Hotfix

Please refer to Appendix A: Upgrading HySecure Cluster for the procedure to upgrade the HySecure Cluster Gateway.