Extended the offline PAN-DB, Panorama, and WildFire certificates which were previously set to expire on September 2, 2024.

Extended the firewall Panorama root CA certificate which was previously set to expire on April 7th, 2024.

Fixed an issue where, when custom signatures and predefined signatures shared the same literal pattern part, the custom signature caused an incorrect calculation for the length of the predefined signature, which resulted in App-ID not detected correctly.

Fixed an issue where a Security policy that referenced more than 30 HIP profiles caused buffer overflow, which caused other Security policies with HIP profiles to misidentified users and traffic was denied.

Fixed an issue where DNS response packets were malformed when an Anti-Spyware Security Profile was enabled.

Fixed an issue where DNS resolution failed when interfaces were configured as DHCP and a DNS server was provided via DHCP while also statically configured with DNS servers.

Fixed an issue where traffic returning from a third-party Security chain was dropped.

Fixed an issue where the firewall was unable to retrieve the most current external dynamic list information from the server due to hostname resolution failure.

(PA-7050 firewalls only) Fixed an issue with out-of-memory (OOM) conditions which caused slot restarts due to pan_cmd consuming more than 300MB.

Fixed an issue where excess WIF process memory use caused processes to restart due to OOM conditions.

Fixed an issue where the logrcvr process stored older content versions in the shared memory even when newer content updates were installed.

Fixed an issue where, after upgrading and rebooting a Panorama appliance in Panorama or Log Collector mode, managed firewalls continuously disconnected.

Fixed an issue where content updates failed with the error message Unable to get key pancontent-8.0.pass from cryptod. Error -9.

Fixed an issue where log ingestion to Panorama failed, which resulted in missing logs under the Monitor tab.

Fixed an issue where the reportd process stopped responding, which caused Panorama to restart.

Fixed an issue where the userID-Agent and TS-Agent certificates were set to expire on November 18, 2024. With this fix, the expiration date has been extended to January 2032.

Fixed an issue where pushing dynamic objects to the firewall did not send all Panorama objects that matched the dynamic object filter when Share Unused Address and Service Objects with Device was selected on Panorama.