[Pfsense-pt] Fwd: [pfSense] pfSense 2.1.2 is released

Thu, 10 Apr 2014 14:01:06 -0700 

---------- Forwarded message ----------
From: Jim Thompson <[email protected]>
Date: 2014-04-10 16:23 GMT-03:00
Subject: [pfSense] pfSense 2.1.2 is released
To: pfSense Support and Discussion Mailing List <[email protected]>



https://blog.pfsense.org/?p=1253

pfSense release 2.1.2 is now available.  pfSense release 2.1.2 follows less
than a week after pfSense release 2.1.1, and is primarily a security
release.

The Heartbleed OpenSSL bug and another OpenSSL bug which enables a
side-channel attack are both covered by the following security
announcements:
        * pfSense-SA-14_04.openssl
        * FreeBSD-SA-14:06.openssl
        * CVE-2014-0160 (Heartbleed)
        * CVE-2014-0076 (ECDSA Flaw)

Packages also have their own independent fixes and need updating. During
the firmware update process the packages will be properly reinstalled.   If
this fails for any reason, uninstall and then reinstall packages to ensure
that the latest version of the binaries is in use.

Other Fixes
        * On packages that use row_helper, when user clicks on an add or
delete button, the page scrolls to top. #3569
        * Correct a typo on function name in Captive Portal bandwidth
allocation.
        * Make extra sure that we do not start multiple instances of
dhcpleases if, for example, the PID is stale or invalid, and there is still
a running instance.
        * Fix for CRL editing. Use an alphanumeric test rather than purely
is_numericint because the ID is generated by uniqid and is not purely
numeric. #3591

You will want to perform a full security audit of your pfSense
installations, renewing any passwords, generating or fitting new
certificates, placing the old certificates on a CRL, etc.
_______________________________________________
List mailing list
[email protected]
https://lists.pfsense.org/mailman/listinfo/list



-- 
  /\             Luiz Gustavo S. Costa
 /  \            Programmer at BSD Perimeter
/    \ /\/\/\    Visit the pfSense Project
/      \    \ \   http://www.pfsense.org
---------------------------------------------------------------------
BSD da serra carioca, Teresopolis (visite: http://miud.in/Inv)
Contatos: [email protected] / [email protected]
Blog: http://www.luizgustavo.pro.br
_______________________________________________
Pfsense-pt mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/pfsense-pt

Responder a