EdgeMAX EdgeRouter software release v1.9.1.1

New EdgeMAX software security release version v1.9.1.1 for EdgeRouter products has been released and is available here:

• ERLite-3 and ERPoe-5:
  https://dl.ubnt.com/firmwares/edgemax/v1.9.1.1/ER-e100.v1.9.1.1.4977347.tar
  (SHA256:2f4a9fed6df41997feb4de7eabe82ff08d1cab30e145f7357b43e2398709e6b3)

• ER-8, ERPro-8, and EP-R8:
  https://dl.ubnt.com/firmwares/edgemax/v1.9.1.1/ER-e200.v1.9.1.1.4977353.tar
  (SHA256:6114b9a844e09acb93978da63e469844b3e09989903b9645b616df60028bc0ef)

• ER-X, ER-X-SFP, and EP-R6:
  https://dl.ubnt.com/firmwares/edgemax/v1.9.1.1/ER-e50.v1.9.1.1.4977602.tar
  (SHA256:4d541922803b705aaa3fa1324a61a9be88bea3467e689c35219a584b5f2fe24a)
  Note: The ER-X/ER-X-SFP/EP-R6 has more limited storage, and in some cases upgrade may fail due to not enough space. If this happens, remove the old backup image first (using "delete system image" command, see here for more details) before doing upgrade.

More details can be found in the release notes below. I would like to thank everyone for their participation in the community, as always helping with testing, reporting issues, providing feedback, suggestions! We certainly could not have done it without you  Thank you very much!

[Release Notes v1.9.1.1]
Changelog
Changes since v1.9.1
New features

    » [None]

Enhancements and bug fixes

    » [Kernel] - Backport crypto_memneq() functionality that protects kernel from leaking timing information about cryptographic operations to potential attacker
    » [Kernel] - Fix CVE-2016-10229. Discussed here
    » [WebUI] - Fix possible XSS vulnerability
    » [WebUI] - Fix possible CSRF vulnerability

Updated software components

    » [None]