Die Open Source Firewall pfSense hat ein kleineres Update in Version 2.3.1_5 erhalten.

pfSense Update 2.3.1_5

Dieses behebt 12 Fehler davon einige in der neuen WebGUI, aktualisiert PHP auf die Version 5.6.22 und behebt 2 Sicherheitsprobleme. Die Minor Updates 2 bis 4 sind im übrigen interne Updates gewesen, die nicht veröffentlicht wurden.

pfSense Release 2.3.1_5  Changelog

• Fixed command injection vulnerability in auth.inc via User Manager. #6475
• Fixed command injection vulnerability in pkg_mgr_install.php id parameter. #6474
• Upgraded PHP to 5.6.22
• Fixed Captive Portal redirect hangs caused by longer keepalive_timeout in nginx. #6421
• Fixed DDNS PTR zone in dhcpd.conf with third octet of 0. #6413
• Fixed save and reset buttons on load balancer status page. #6254
• Fixed schedule editing on firewall rules page. #6428
• Allow “-” character in TFTP server field on DHCP Server page. #6433
• Allow “-” and “_” characters in system tunables. #6438
• Fixed changing of link type on PPPs edit screen. #6439
• Fixed setting of “RADIUS issued IPs” on L2TP page. #6440
• Restored apply changes button for interface mismatch post-config restore. #6460
• Fixed display of Outbound NAT port aliases. #6463
• Fixed schedule edit allowing invalid time range. #6468

2.3.1 update 5 (2.3.1_5) was released on June 16, 2016 with the following fixes/changes since 2.3.1_1. New Features und Changes