Some ZFS and UEFI issues were addressed in this release

Nov 22, 2017 17:31 GMT  ·  By

Netgate's Jim Pingle announced the availability of the second maintenance and stabilization update to the latest 2.4 series of pfSense, world's most trusted open-source firewall.

pfSense 2.4.2 is a security and bugfix release that updates the OpenSSL packages to version 1.0.2m to fix two recently disclosed vulnerabilities (CVE-2017-3736 and CVE-2017-3735), addresses three potential XSS vectors, fixes the VLAN priority handling, and addresses issues with PPP interfaces that have VLAN parents.

Furthermore, it improves the network performance and resolves various issues with the package handling and update system, as well as with the ALTQ/QoS/Limiter behavior, the IPsec status display, and the stability and connectivity of the LAGG interface since the previous update, pfSense 2.4.1, which patched the WPA2 KRACK bug.

"pfSense software version 2.4.2 is a maintenance release bringing security patches and stability fixes for issues present in previous pfSense 2.4.x branch releases," said Jim Pingle. "Aside from security fixes, the changes in pfSense software version 2.4.2 also include important corrections for regressions in previous 2.4.x releases."

New GUI is now available for the built-in switch on the SG-3100

Apart from the security and bug fixes mentioned above, the pfSense 2.4.2 maintenance update adds a GUI (Graphical User Interface) for the built-in switch on the SG-3100. Also, the WebGUI received multiple improvements, along with the Traffic Shaping, IPsec, and OpenVPN implementations.

You can study the full release notes if you're curious to know what exactly was implemented in pfSense 2.4.2, which is available for download right now from our website for those who want to upgrade from the older 2.3.x release or deploy the firewall on new hardware. Existing pfSense 2.4.x users need only to update their installations.