Het pfSense-project is in 2004 begonnen als een afsplitsing van m0n0wall vanwege verschillende visies bij de ontwikkelaars, en in de loop van de jaren uitgegroeid tot een router- en firewallpakket dat in zowel kleine als zeer grote omgevingen kan worden ingezet. Voor meer informatie verwijzen we naar deze pagina. Het ontwikkelteam heeft pfSense 2.4.4-p1 uitgebracht met de volgende veranderingen:
pfSense 2.4.4-RELEASE-p1 now available
We are excited to announce the release of pfSense software version 2.4.4-p1, now available for upgrades! pfSense software version 2.4.4-p1 is a maintenance release, bringing security patches and stability fixes for issues present in the 2.4.4 release.
Highlights
The following lists are a brief summary of changes in pfSense 2.4.4. To see a complete list of changes and find more detail, see the Release Notes.
SECURITY / ERRATA
This release includes several important security patches:NOTABLE BUG FIXES
- FreeBSD Errata Notice FreeBSD-EN-18:09.ip: IP fragment remediation causes IPv6 fragment reassembly failure #8934
- FreeBSD Errata Notice FreeBSD-EN-18:10.syscall NULL pointer dereference in freebsd4_getfsstat system call (CVE-2018-17154)
- FreeBSD Errata Notice FreeBSD-EN-18:11.listen Denial of service in listen syscall over IPv6 socket (CVE-2018-6925)
- FreeBSD Errata Notice FreeBSD-EN-18:12.mem Small kernel memory disclosures in two system calls (CVE-2018-17155)
- Fixed a potential authenticated command injection issue with PowerD settings. pfSense-SA-18_09.webgui #9061
- Fixed handling of privileges on the All group that were previously ignored.
Warning: Check the privileges on the All group before upgrading to avoid unintended privileges for accounts being respected that were not honored before.NOTABLE NEW FEATURES
- Fixed various sources of PHP 7.2 errors throughout the code base.
- Updated Unbound to 1.8.1 to address issues with memory leaks, especially in DNS over TLS support.
- Updated strongSwan to 5.7.1.
- Improved IPsec VTI compatibility with third-party vendor implementations.
- The filterdns daemon has been completely rewritten to address a number of issues.
- Fixed issues with package reinstallation after restoring a configuration backup.
- Fixed issues with Hyper-V hn(4) network interfaces and IPv6 as well as issues with ALTQ.
2.3.x EOL Reminder
- Added GUI options to control sshguard sensitivity and whitelisting to allow users to fine-tune the behavior of the brute force login protection.
- Added support for LDAP client certificates on authentication servers. (Factory only)
- Added schedule (cron) support to AutoConfigBackup.
The 2.3.x branch has passed its end of life (EOL) date and is no longer supported. Upgrade to 2.4.x on compatible hardware as soon as possible. See pfSense Release 2.3.x EOL Reminder for more information.
:strip_exif()/i/2007381076.png?f=thumbmedium)