Software update: pfSense 2.4.4-p1

Dec

11

2018

The pfSense project started in 2004 as a demerger of m0n0wall because of different visions among the developers, and over the years it has become a router and firewall package that can be used in both small and very large environments. For more information we refer to this page . The development team has released pfSense 2.4.4-p1 with the following changes:

pfSense 2.4.4-RELEASE-p1 now available

We are excited to announce the release of pfSense software version 2.4.4-p1, now available for upgrades! pfSense software version 2.4.4-p1 is a maintenance release, bringing security patches and stability fixes for issues present in the 2.4.4 release.

Highlights

The following lists are a summary of changes in pfSense 2.4.4. To see a complete list of changes and more details, see the Release Notes.

SECURITY / ERRATA
This release includes several important security patches:
FreeBSD Errata Notice FreeBSD-EN-18: 09.ip: IP fragment remediation causes IPv6 fragment reassembly failure # 8934
FreeBSD Errata Notice FreeBSD-EN-18: 10.script NULL pointer dereference in freebsd4_getfsstat system call (CVE-2018-17154)
FreeBSD Errata Notice FreeBSD-EN-18: 11.listen Denial of service in listen syscall over IPv6 socket (CVE-2018-6925)
FreeBSD Errata Notice FreeBSD-EN-18: 12.mem Small kernel memory disclosures in two system calls (CVE-2018-17155)
Fixed a potential authenticated command injection issue with PowerD settings. pfSense-SA-18_09.webgui # 9061
Fixed handling or privileges on the All group that were previously ignored.
Warning: Check the privileges before the unprecedented privileges for accounts are respected that were not honored before.
NOTABLE BUG FIXES
Fixed various sources of PHP 7.2 errors throughout the code base.
Updated Unbound to 1.8.1 to address issues with memory leaks, especially in DNS about TLS support.
Updated strongSwan to 5.7.1.
Improved IPsec VTI compatibility with third-party vendor implementations.
The filterdns daemon has been completely rewritten to address a number of issues.
Fixed issues with package reinstallation after restoring a configuration backup.
Fixed issues with Hyper-V hn (4) network interfaces and IPv6 as well as issues with ALTQ.
NOTABLE NEW FEATURES
Added GUI options to control sshguard sensitivity and whitelisting to allow users to fine-tune the behavior of the brute force login protection.
Added support for LDAP client certificates on authentication servers. (Factory only)
Added schedule (cron) support to AutoConfigBackup.
2.3.x EOL Reminder
The 2.3.x branch has passed its end of life (EOL) date and is no longer supported. Upgrade to 2.4.x on compatible hardware as soon as possible. See pfSense Release 2.3.x EOL Reminder for more information.
Version number 2.4.4-p1
Release status Final
Operating systems BSD
Website
pfSense
Download
https://www.netgate.com/blog/pfsense-2-4-4-release-p1-now-available.html
License type GPL

Viewing:-109

In: A Technology & Gadgets Asked By: [23633 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »