Security fixes

  • N2OS-9865 - Addressed a vulnerability that allowed uploading a denylist file for a non-existing interface.
  • N2OS-13206 - Fixed an issue that caused functional options within URL to be logged in case of download error when Threat Intelligence or Asset Intelligence contents are downloaded.
  • N2OS-13750 - Improved the reliability of SSO login.
  • N2OS-13789 - Updated FreeBSD
  • N2OS-13821 - The interpreter for scriptable protocols has been upgraded from Lua5.3 to 5.4. Customers using scriptable protocols are recommended to consider the incompatibilities between these two versions of Lua, described in Chapter 8 of the Lua user manual: https://www.lua.org/manual/5.4/manual.html.
  • N2OS-13933 - Upgraded WolfSSL library for FIPS to version 5.6.0.
  • N2OS-14193 - Web interface passwords can now be hashed using the pbkdf2 sha512 algorithm; see the password policy chapter in the user manual for more details.