PAN-OS 10.2.10-h18 Addressed Issues
Table of Contents
Expand All
|
Collapse All
Next-Generation Firewall Docs
-
-
-
-
-
-
-
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 11.0 (EoL)
- PAN-OS 10.2
- PAN-OS 10.1
- PAN-OS 10.0 (EoL)
- PAN-OS 9.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 8.1 (EoL)
-
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 10.2
- PAN-OS 10.1
PAN-OS 10.2.10-h18 Addressed Issues
Addressed issues for the PAN-OS 10.2.10-h18 general available hotfix
release.
| Issue ID | Description |
|---|---|
|
PAN-286255
|
Fixed an issue where, when the firewall received an unexpected
termination request for SSL sessions, the dataplane experienced a
slow buffer resource leak.
|
|
PAN-283813
|
Fixed an issue on Panorama where the web interface performance was
slower than usual when retrieving read-only configurations from
Panorama.
|
|
PAN-279400
|
Fixed an issue where, when Restrict Certificate
Extensions was enabled on decryption profiles, the
basic constraints extension was overwritten incorrectly.
|
|
PAN-278150
|
Fixed an issue where the firewall removed the Authentication Key
Identifier (AKID) from the certificate during SSL decryption, which
caused Python 3.13 to fail with a certificate verification error.
|
|
PAN-277417
|
Fixed an memory leak issue related to TLS inbound decryption.
|
|
PAN-277147
|
Fixed an issue where daily scheduled reports were not generated and
emailed.
|
|
PAN-276692
|
Fixed an issue where the firewall did not install a Pay-as-you-go
(PAYG) license if the check failed.
|
|
PAN-276678
|
Fixed an issue where Panorama became unresponsive while performing a
dynamic address update without a lock.
|
|
PAN-271425
|
(Firewalls in active/active high availability (HA) configurations
only) Fixed an issue with SSL inbound decryption on
firewalls on a vwire setup with asymmetric routing.
To use this fix, enter the CLI command set system
setting ssl-decrypt ha-vwire-mac-learn global yes
on both firewalls in an HA pair.
|
|
PAN-269956
|
Fixed an issue where the all_pktproc process stopped
responding, which caused internal path monitor failures.
|
|
PAN-269700
|
Fixed an issue where commits to service connection firewalls from
Panorama failed.
|
|
PAN-269499
|
Fixed an issue where the firewall stopped responding when receiving a
high number of logs.
|
|
PAN-269291
|
Fixed an issue where the scheduled report generation script did not
return debug information.
|
|
PAN-265646
|
Fixed an issue where the config lock icon was not visible for a
custom role-based admin when a Superuser admin had acquired the
config lock.
|
|
PAN-264169
|
(PA-5400 Series firewalls only) Fixed an issue where the
firewall sent correlated event logs to the syslog server using the
management interface instead of the log interface.
|
|
PAN-263291
|
Fixed an issue where Microsoft Outlook did not work as expected when
the GlobalProtect clientless VPN was configured.
|
|
PAN-262946
|
Fixed an issue on the firewall where logging in via the CLI or web
interface did not work due to increased memory usage.
|
|
PAN-260564
|
Fixed an issue on firewalls in HA configurations where a network loop
was detected by switches after suspending HA on the active firewall.
|
|
PAN-257432
|
Fixed an issue on Panorama where the reportd process
stopped responding, which caused a log query issue.
|
|
PAN-256666
|
Fixed an issue where the configd process stopped
responding when Commit and Push operations
were performed on multiple device groups.
|
|
PAN-256115
|
Fixed an issue where, after replacing a Panorama appliance or log
collector, the secondary Panorama appliance or log collector
displayed a disconnected status for the
inter-log collector connection.
|
|
PAN-254524
|
Fixed an issue on Panorama where, when the Commit and
Push button was clicked during a selective
Commit and Push operation, the window
stopped responding, which caused the operation to be delayed.
|
|
PAN-254174
|
A fix was made to address CVE-2025-0115.
|
|
PAN-251929
|
Fixed an issue where inbound decryption did not work when FIPS self
tests were turned on.
|
|
PAN-244227
|
Fixed an issue where inconsistent FIB entries across the dataplane
were not detected.
|
|
PAN-241547
|
A fix was made to address CVE-2023-48795.
|
|
PAN-238594
|
Fixed an issue where the firewall rebooted when a QSFP28 cable was
removed from the port while the port was passing traffic.
|
|
PAN-237010
|
Fixed an issue on Panorama where local commits took longer than
expected after an upgrade.
|
|
PAN-233868
|
Fixed an issue where the firewall took an incorrect action for
overlapping custom and edl-url-categories in a policy rule.
|
|
PAN-224833
|
Fixed an issue where the firewall dropped DHCPv6 relay packets if
there were duplicate link-local addresses on different
sub-interfaces.
|
|
PAN-214177
|
Fixed an issue where template configurations were not properly pushed
to the firewall during an export or push of the device configuration
bundle.
|