Fixed an issue where scheduled SaaS application usage reports were generated incorrectly, and the login page was displayed instead of the report content.

Fixed an issue where the packet buffer size increased significantly when WildFire File Forwarding was continued after a threat detection and then canceled.

A fix was made to address CVE-2025-0111.

A fix was made to address CVE-2025-0108.

Fixed an issue where SNMP scans to a firewall timed out after upgrading to a PAN-OS 10.2 release.

A fix was made to address CVE-2025-0109.

Fixed an issue where TLS 1.3 decryption failed with a bad record MAC error when the firewall was configured to decrypt and inspect TLS traffic.

Fixed an issue where early TLS data was not handled correctly by the accumulation proxy.

Fixed a CPS counter query issue that caused SNMP polling timeouts on the firewall.

Fixed an issue on hardware firewalls where, when SSL decryption was enabled and Client Hello messages spanned multiple TCP segments, some SSL decrypted sessions failed.

Fixed an issue where the firewall did not send an ICMP error packet to Envoy when the MSS was exceeded.

Fixed an issue on the firewall where SNMP queries timed out when using SNMP.

Fixed an issue where the firewall stopped responding when receiving SNMPv3 traps.

(PA-5250 firewalls only) Fixed an issue where the logrcvr process stopped responding due to a segmentation fault.

A fix was made to address CVE-2024-9468.

Fixed an issue where decryption failed for TLSv1.3 with the error message early close notify.

Fixed an issue where the useridd process memory usage increased with each MDM reconnected attempt.

Fixed an issue where SNMPv3 authentication failed when using SHA-512 Auth protocol.

Fixed an intermittent issue where the OCSP query failed.

Fixed an issue where the CLI command settings for set system setting logging max-log-rate did not persist after a mgmtsrvr process restart.

A fix was made to address CVE-2024-5920.

Fixed an issue where the length of the TCP timestamp option was not considered when the proxy sent out data, which caused oversized packets to be sent out and fragmented or dropped.

Fixed an issue where the firewall interface did not go down even after the peer link/switch port went down.

Fixed an issue where the logrcvr process netflow buffer was not reset which resulted in duplicate netflow records.

Fixed an issue on Panorama where Commit and Push or Push to Devices operations failed when an external dynamic list was configured to check for updates every 5 minutes due to the commit and external dynamic fetch processes overlapping.