Archive for the ‘Releases’ Category

2.1.2 Release Now available

Thursday, April 10th, 2014

pfSense release 2.1.2 follows less than a week after pfSense release 2.1.1.  pfSense 2.1.2 is primarily a security release.

Security Fixes

The Heartbleed OpenSSL bug and another OpenSSL bug which enables a side-channel attack are both covered by the following security announcements:

Packages also have their own independent fixes and need updating. During the firmware update process the packages will be properly reinstalled.   If this fails for any reason, uninstall and then reinstall packages to ensure that the latest version of the binaries is in use.
Read the rest of this entry »

2.1.1-RELEASE now available

Friday, April 4th, 2014

I’m happy to announce the release of pfSense 2.1.1.

The largest change is to close the following security issues / CVEs:

  • FreeBSD-SA-14:01.bsnmpd / CVE-2014-1452
  • FreeBSD-SA-14:02.ntpd / CVE-2013-5211
  • FreeBSD-SA-14:03.openssl / CVE-2013-4353, CVE-2013-6449, CVE-2013-6450

Other than these, the em/igb/ixgb/ixgbe drivers have been upgraded to add support for i210 and i354 NICs.   Some Intel 10Gb Ethernet NICs will also see improved performance.

The release is making its way to the mirrors now. The complete list of significant changes can also be found here including more details on the above.

pfSense 2.1 on AWS EC2

Thursday, November 21st, 2013

We now have pfSense 2.1 available on Amazon’s Elastic Compute Cloud (EC2).

Finally.

All instances are currently 64-bit, and thus require HVM.  As such, the EC2 types which are supported are somewhat limited.

Currently there are two versions.   There is a pfSense Certified release available in the AWS Marketplace.  You can find it here: Netgate pfSense Certified Router/Firewall/VPN
Read the rest of this entry »

pfSense 2.1-RELEASE now available!

Sunday, September 15th, 2013

I’m proud to announce the release of pfSense 2.1, and our new Gold Subscription! The 2.1 book and our AutoConfigBackup service, available for years to support subscribers, are immediately available today to Gold subscribers. See this post for details. Onto the release!

This release brings many new features, with the biggest change being IPv6 support in most every portion of the system. There are also a number of bug fixes, and touch ups in general. It’s making its way to the mirrors now, and should be on all of them by end of day Sunday. The complete list of significant changes follows, and can also be found here including more details. If you want to see every single individual change, check out RELENG_2_1 commits in our github here and the 469 completed tickets in our redmine here.
Read the rest of this entry »

2.0.3 Release Now Available!

Monday, April 15th, 2013

I’m happy to announce the release of pfSense 2.0.3. This is a maintenance release with some bug and security fixes since 2.0.2 release. You can upgrade from any previous release to 2.0.3.

Change List

Security Fixes

  • Updated to OpenSSL 0.9.8y to address FreeBSD-SA-13:03.
  • Fix below XSS in IPsec log possible from users possessing shared key or valid certificate
  • Below S.M.A.R.T. input validation fix isn’t security relevant in the vast majority of use cases, but it could lead to privilege escalation for an administrative user with limited rights who can access the S.M.A.R.T. pages but cannot access any of the pages that allow command execution by design.

Read the rest of this entry »

2.0.2 Release Now Available!

Friday, December 21st, 2012

pfSense 2.0.2 is a maintenance release with some bug and security fixes since 2.0.1 release. You can upgrade from any previous release to 2.0.2.

Heads up for those upgrading

Auto Update URL – For those upgrading from a prior release, first please make sure you’re on the correct auto-update URL. Tens of thousands of installs were from 2.0 pre-release snapshots which had their update URL set to the snapshot server rather than the stable release updates. Others had manually set their architecture incorrectly at some point and had failed upgrades because of it. Just browse to System>Firmware, Updater Settings tab. From the “Default Auto Update URLs” drop down box, pick either the stable i386 or amd64 depending on which version you have installed, and click Save. Then you can use the auto-update and be ensured you’re pulling from the correct location.
Read the rest of this entry »

2.0.1 release now available!

Tuesday, December 20th, 2011

pfSense 2.0.1 release is now available. This is a maintenance release with some bug and security fixes since 2.0 release. This is the recommended release for all installations. As always, you can upgrade from any previous release to 2.0.1, so if you haven’t upgraded to 2.0 yet, just upgrade straight to 2.0.1. For those who use the built in certificate manager, pay close attention to the notes below on a potential security issue with those certificates.

Change list

Read the rest of this entry »

2.0 Release Now Available!

Saturday, September 17th, 2011

I’m proud to announce the release of version 2.0. This brings the past three years of new feature additions, with significant enhancements to almost every portion of the system. The changes and new features are summarized here. This is by far the most widely deployed release we’ve put out, thanks to the efforts of thousands of members of the community. We also have hundreds of customer systems that have been running 2.0 in production for months and years in some cases. More than 108,000 unique IPs have downloaded snapshots in 2011 from snapshots.pfsense.org alone, not counting downloads from the mirrors.
Read the rest of this entry »

1.2.3 Release Available!

Thursday, December 10th, 2009

1.2.3 release is now available! This is a maintenance release in the 1.2.x series, bringing an updated FreeBSD base, some minor enhancements, some bug fixes, and a couple security updates. We’ve been waiting a few weeks in anticipation of a FreeBSD security advisory for the SSL/TLS renegotiation vulnerability, which came last week and allowed us to finalize the release.

Change list

The primary changes from 1.2.2 are listed below.
Read the rest of this entry »

pfSense 1.2.2 released!

Friday, January 9th, 2009

1.2.2 is now making its way to the mirrors. Only five changes from 1.2.1, but we did want to get these issues fixed and an updated version out there.

  • Setup wizard fix – removing BigPond from the WAN page on the setup wizard caused problems.
  • SVG graphs fixed in Google Chrome. The graph page used to not require authentication, which is how it works in m0n0wall, I believe because at the time the feature was implemented in m0n0wall that is the only way it would work. We added required authentication on this page, and while it worked in Firefox, the way it was implemented broke Chrome. Chrome is now fixed. IE believed to still be broken, and the only resolution appears to be not requiring authentication for the graph. We would rather break the SVG graphs in IE and tighten that down than leave it open.
  • Read the rest of this entry »