The Complete Magazine on Open Source

pfSense 2.3.4-p1 debuts with security fixes

pfSense 2.3.4-p1 security update

A new security patch update has been released in the pfSense stable repository. Debuted as pfSense 2.3.4-p1, the update has arrived just two and a half months after the launch of the original pfSense 2.3.4 and addressed the security issues in OpenVPN.

The pfSense 2.3.4-p1 update addresses all the known issues with wildcard CNAME records and CloudFlare Dynamic DNS. There was a loophole that was used to disappear the CNAME records while updating DNS configuration in the previous version.

In addition to the wildcard-related update, the new version improves the pid file handlind for choparp (Proxy ARM Daemon). A new warning screen is also added to the GUI. The screen prevents accessing firewall when client IP is in the lockout table. Similarly, removing the client’s connection states is possible with the new version and there are implementations related to syslogd service definition.

Besides, the latest pfSense update can sort the virtual IP address list. The new version can also detect APU2 for devices running coreboot 4.x.

Patches on board

The pfSense team has added some security fixes apart from bringing new features to the latest version. There is the SSL peer verification in Hover Dynamic DNS and component patches to make the firewall more secure than its previous versions. Moreover, there are various bugfixes that were highlighted by users in the past.

Users are recommended to update their current pfSense installations with the new version.