Current File : //proc/self/root/backups/router/usr/local/opnsense/changelog/20.1.7.htm
<p>Hi there,</p><p>Today we move to PHP 7.3 in order to be able to complete testing for the 20.7-BETA online upgrades. Also included is a patch for the packet filter kernel code which could crash with shared forwarding when interfaces disappeared due to use after free in the default network stack path.</p><p>Here are the full patch notes:</p><p><ul><li>system: default net.inet.icmp.reply_from_interface to 1</li><li>system: fix static gateway wizard handing</li><li>firewall: allow outbound NAT source and destination port ranges</li><li>interfaces: use interfaces_primary_address6() inside get_interface_ipv6()</li><li>dhcp: add AdvLinkMTU to router advertisements settings (contributed by Ilteris Eroglu)</li><li>unbound: prevent wildcard domains for the local system domain</li><li>backend: suppress inconsequential IDNA warnings for aliases</li><li>backend: add option to return a key value list for TLS ciphers</li><li>mvc: reference constraint pointing validation results to the wrong field</li><li>plugins: os-acme-client 1.32 adds Acmeproxy DNS support (contributed by Maarten den Braber)</li><li>src: added Novatel Wireless MiFi 8800/8000 support (contributed by rootless4real)</li><li>src: fix pf shared forwarding on non-existing interfaces</li><li>src: patch in tty 3wire autologin support</li><li>src: fix insufficient packet length validation in libalias[<a target="_blank" href="https://www.freebsd.org/security/advisories/FreeBSD-SA-20:12.libalias.asc">1</a>]</li><li>src: fix memory disclosure vulnerability in libalias[<a target="_blank" href="https://www.freebsd.org/security/advisories/FreeBSD-SA-20:13.libalias.asc">2</a>]</li><li>src: fix improper checking in SCTP-AUTH shared key update[<a target="_blank" href="https://www.freebsd.org/security/advisories/FreeBSD-SA-20:14.sctp.asc">3</a>]</li><li>src: fix use after free in cryptodev module[<a target="_blank" href="https://www.freebsd.org/security/advisories/FreeBSD-SA-20:15.cryptodev.asc">4</a>]</li><li>src: update to tzdata 2020a[<a target="_blank" href="https://www.freebsd.org/security/advisories/FreeBSD-EN-20:08.tzdata.asc">5</a>]</li><li>ports: ca_root_nss 3.52</li><li>ports: curl 7.70.0[<a target="_blank" href="https://curl.se/changes.html#7_70_0">6</a>]</li><li>ports: dhcp6c 20200512</li><li>ports: hyperscan 5.2.1[<a target="_blank" href="https://github.com/intel/hyperscan/releases/tag/v5.2.1">7</a>]</li><li>ports: openldap 2.4.50[<a target="_blank" href="https://www.openldap.org/software/release/changes.html">8</a>]</li><li>ports: pcre2 10.35[<a target="_blank" href="https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.35">9</a>]</li><li>ports: php 7.3.18[<a target="_blank" href="https://www.php.net/ChangeLog-7.php#7.3.18">10</a>]</li></ul></p><p><br>Stay safe and healthy,<br> Your OPNsense team</p>
Mini Shell