Red Hat SATELLITE 5.0.0 RELEASE NOTES Manual de usuario descargar pdf (Pagina 33)

Palo Alto Networks PAN-OS 6.1 Release Notes • 33

PAN-OS 6.1.2 Addressed Issues

71503

Addressed an incorrect file permissions issue in the web interface.

71486

A security-related fix was made to address an issue with user input sanitization to

prevent Cross-Site Scripting (XSS) attacks against the web interface.

71464

If a client initiates a Point-to-point protocol over Ethernet (PPPOE) session, an issue

was seen when a server responds to the client with a PPOE Active Discovery Offer

(PADO) packet that was greater in size than the maximum transmission unit (MTU) of

the firewall interface. In this case, the PADO packet was dropped. This issue has been

addressed so that PADO packets are handled correctly by the firewall, including when

the size of the packet is greater than the MTU for the firewall interface.

71408

An error was displayed on the WildFire portal when downloading a WildFire Analysis

Report as a PDF. This issue has been fixed so that using the option to download a

WildFire Analysis Report as a PDF works correctly and does not display an error.

71333

In a high availability (HA) active/active configuration with an IPSec tunnel configured

to terminate on a floating IP address, Encapsulating Security Payload (ESP) was

performed by the device that did not own the floating IP address. The encapsulated

packets failed the IPSec anti-replay check on the remote end of the IPSec tunnel and

were discarded. With this fix, packets are always sent to the owner of the floating IP

address to be encapsulated.

71321

Removed support for SSL 3.0 from the GlobalProtect™ gateway, GlobalProtect

portal, and Captive Portal due to CVE-2014-3566 (POODLE).

71320

Removed support for SSL 3.0 from the web interface due to CVE-2014-3566

(POODLE).

71273

A security update was made in PAN-OS to address issues related to parsing XML data.

71199

In a Large Scale VPN (LSVPN) setup, a GlobalProtect satellite reconnecting to a

GlobalProtect gateway after receiving a different IP address, changed the

GlobalProtect routing metrics when installing the gateway access routes into the

satellite routing table. With this fix, the original gateway routing priority is restored

when the GlobalProtect satellite reconnects to the GlobalProtect gateway with a

different IP address.

71148

When attempting to add an address to an address group using the Panorama web

interface, filtering for the address returned no results even though the address object

did exist and was displayed as configured on the

Objects > Addresses page.

Additionally, filtering for the same address object when attempting to add the address

to a security rule displayed different results for the address object name. This issue has

been resolved so that filtering for an address correctly displays any configured address

objects, and so that address object names are displayed consistently.

70920

License expiration dates are now enforced on all firewalls according to Coordinated

Universal Time (UTC), regardless of the time zone configured for the firewall. This

update resolves conflicts between local time zones and license expiration dates,

specifically addressing conflicts due to the Daylight saving time (DST) transition.

70903

Fixed an issue where SNMP traps from some firewalls were not parsed correctly by the

SNMP manager.

Issue Identifier Description

1 2 ... 28 29 30 31 32 33 34 35 36 37 38 ... 51 52

Comentarios a estos manuales

Sin comentarios

Red Hat SATELLITE 5.0.0 RELEASE NOTES Manual de usuario Pagina 33

Comentarios a estos manuales

Relacionado con productos y manuales para Software Red Hat SATELLITE 5.0.0 RELEASE NOTES