2.4.2-p1 New Features and Changes

New features and changes for this release of pfSense® software:

Security / Errata

• Updated OpenSSL to address CVE-2017-3737 and CVE-2017-3738 FreeBSD-SA-17:12.openssl

• Fixed a potential authenticated command execution issue in certificate data handling #8153 pfSense-SA-17_10.packages.asc

• Fixed a potential XSS issue in status_filter_reload.php #8143 pfSense-SA-17_11.packages.asc

Misc

• Fixed an issue with the subnet mask not being preserved properly when editing existing 1:1 NAT entries #8112

• Fixed an indexing issue when deleting Host Override entries from the DNS Forwarder #8159

• Fixed logging for L2TP and PPPoE server login/logout events #8164

• Removed ix from the ALTQ interface list since ALTQ support for the ix driver is not currently viable #7378

• Fixed a premature session timeout issue on pages which update exclusively using AJAX, such as status_graph.php #8116

• Fixed ping_hosts.sh so it does not unnecessarily run a CARP check when there are no IPsec hosts to ping #8172

• Fixed a missing global variable declaration in interface IP address detection

• Fixed issues with local authentication when using translated languages