The pfSense team announced availability of pfSense 2.2.6-RELEASE, latest stable release of free network firewall distribution based on FreeBSD operating system. This release is shipped with a number of bug fixes and security updates.
According to official release announcement, following are some bug fixes made in this release.
More information regarding this release can be found in pfSense blog.According to official release announcement, following are some bug fixes made in this release.
- pfSense-SA-15_09.webgui: Local File Inclusion Vulnerability in the pfSense WebGUI
- pfSense-SA-15_10.captiveportal: SQL Injection Vulnerability in the pfSense captive portal logout
- pfSense-SA-15_11.webgui: Multiple XSS and CSRF Vulnerabilities in the pfSense WebGUI
- Updated to FreeBSD 10.1-RELEASE-p25
- FreeBSD-SA-15:26.openssl Multiple vulnerabilities in OpenSSL
- Updated strongSwan to 5.3.5_2
- Includes fix for CVE-2015-8023 authentication bypass vulnerability in the eap-mschapv2 plugin.