OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Administrative »
  • Announcements »
  • OPNsense 24.7.8 released
« previous next »
  • Print
Pages: [1]

Author Topic: OPNsense 24.7.8 released  (Read 2242 times)

franco

  • Administrator
  • Hero Member
  • *****
  • Posts: 17582
  • Karma: 1602
    • View Profile
OPNsense 24.7.8 released
« on: November 06, 2024, 02:52:51 pm »
Hey there,

Minor update with FreeBSD security advisories and a number of stable
branch patches for various Intel drivers.  Two problems with the RRD
rework are herby fixed as well.

Here are the full patch notes:

o system: add missing MinProtocol in OpenSSL config template from trust settings
o system: add SignatureAlgorithms option and fix minor form glitch in trust settings
o system: bring CRLs into bundles as well
o system: sync certctl to FreeBSD 14.1 base code et al
o reporting: isset() vs. empty() on RRD enable
o reporting: fix regression in RRD temperature readings
o interfaces: parse part of SFP module information in legacy_interfaces_details()
o firewall: add a note about stateless TCP during syncookie use
o firewall: enhance validation that group name can not start or end with a digit
o firmware: improve health script and use config.sh
o firmware: rework CRL check in config.sh
o firmware: use the trust store for CRL verification
o lang: update available translations
o ipsec: add swanctl.conf download button to settings page
o ipsec: add description field to pre-shared-keys
o isc-dhcp: safeguard output type for json_decode() in leases page
o unbound: allow RFC 2181 compatible names in overrides
o mvc: fix UpdateOnlyTextField incompatibility with DependConstraint (contributed by kumy)
o plugins: os-bind 1.33[1]
o plugins: os-caddy 1.7.4[2]
o plugins: os-etpro-telemetry lowers log level of collection invoke (contributed by doktornotor)
o plugins: os-iperf fixes JS TypeError when parsing result (contributed by Leo Huang)
o plugins: os-tinc removes "pipes" Python module dependency (contributed by andrewhotlab)
o src: multiple issues in the bhyve hypervisor[3]
o src: unbounded allocation in ctl(4) CAM Target Layer[4]
o src: XDG runtime directory file descriptor leak at login[5]
o src: assorted FreeBSD stable patches for Intel ixgbe, igb, igc and e1000 drivers
o src: cxgb: register ifmedia callbacks before ether_ifattach
o src: enc: use new KPI to create enc interface
o src: ifconfig: fix wrong indentation for the status of pfsync
o src: iflib: simplify iflib_legacy_setup
o src: iflib: use if_alloc_dev() to allocate the ifnet
o src: netmap: make memory pools NUMA-aware
o src: vlan: handle VID conflicts
o ports: libpfctl 0.14
o ports: nss 3.106[6]
o ports: php 8.2.25[7]


Stay safe,
Your OPNsense team

--
[1] https://github.com/opnsense/plugins/blob/stable/24.7/dns/bind/pkg-descr
[2] https://github.com/opnsense/plugins/blob/stable/24.7/www/caddy/pkg-descr
[3] https://www.freebsd.org/security/advisories/FreeBSD-EN-24:17.pam_xdg.asc
[4] https://www.freebsd.org/security/advisories/FreeBSD-SA-24:17.bhyve.asc
[5] https://www.freebsd.org/security/advisories/FreeBSD-SA-24:18.ctl.asc
[6] https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_106.html
[7] https://www.php.net/ChangeLog-8.php#8.2.25
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Administrative »
  • Announcements »
  • OPNsense 24.7.8 released
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2