Home
Help
Search
Login
Register
OPNsense Forum
»
Administrative
»
Announcements
»
OPNsense 24.7.8 released
« previous
next »
Print
Pages: [
1
]
Author
Topic: OPNsense 24.7.8 released (Read 2141 times)
franco
Administrator
Hero Member
Posts: 17582
Karma: 1602
OPNsense 24.7.8 released
«
on:
November 06, 2024, 02:52:51 pm »
Hey there,
Minor update with FreeBSD security advisories and a number of stable
branch patches for various Intel drivers. Two problems with the RRD
rework are herby fixed as well.
Here are the full patch notes:
o system: add missing MinProtocol in OpenSSL config template from trust settings
o system: add SignatureAlgorithms option and fix minor form glitch in trust settings
o system: bring CRLs into bundles as well
o system: sync certctl to FreeBSD 14.1 base code et al
o reporting: isset() vs. empty() on RRD enable
o reporting: fix regression in RRD temperature readings
o interfaces: parse part of SFP module information in legacy_interfaces_details()
o firewall: add a note about stateless TCP during syncookie use
o firewall: enhance validation that group name can not start or end with a digit
o firmware: improve health script and use config.sh
o firmware: rework CRL check in config.sh
o firmware: use the trust store for CRL verification
o lang: update available translations
o ipsec: add swanctl.conf download button to settings page
o ipsec: add description field to pre-shared-keys
o isc-dhcp: safeguard output type for json_decode() in leases page
o unbound: allow RFC 2181 compatible names in overrides
o mvc: fix UpdateOnlyTextField incompatibility with DependConstraint (contributed by kumy)
o plugins: os-bind 1.33[1]
o plugins: os-caddy 1.7.4[2]
o plugins: os-etpro-telemetry lowers log level of collection invoke (contributed by doktornotor)
o plugins: os-iperf fixes JS TypeError when parsing result (contributed by Leo Huang)
o plugins: os-tinc removes "pipes" Python module dependency (contributed by andrewhotlab)
o src: multiple issues in the bhyve hypervisor[3]
o src: unbounded allocation in ctl(4) CAM Target Layer[4]
o src: XDG runtime directory file descriptor leak at login[5]
o src: assorted FreeBSD stable patches for Intel ixgbe, igb, igc and e1000 drivers
o src: cxgb: register ifmedia callbacks before ether_ifattach
o src: enc: use new KPI to create enc interface
o src: ifconfig: fix wrong indentation for the status of pfsync
o src: iflib: simplify iflib_legacy_setup
o src: iflib: use if_alloc_dev() to allocate the ifnet
o src: netmap: make memory pools NUMA-aware
o src: vlan: handle VID conflicts
o ports: libpfctl 0.14
o ports: nss 3.106[6]
o ports: php 8.2.25[7]
Stay safe,
Your OPNsense team
--
[1]
https://github.com/opnsense/plugins/blob/stable/24.7/dns/bind/pkg-descr
[2]
https://github.com/opnsense/plugins/blob/stable/24.7/www/caddy/pkg-descr
[3]
https://www.freebsd.org/security/advisories/FreeBSD-EN-24:17.pam_xdg.asc
[4]
https://www.freebsd.org/security/advisories/FreeBSD-SA-24:17.bhyve.asc
[5]
https://www.freebsd.org/security/advisories/FreeBSD-SA-24:18.ctl.asc
[6]
https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_106.html
[7]
https://www.php.net/ChangeLog-8.php#8.2.25
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Administrative
»
Announcements
»
OPNsense 24.7.8 released