Fixed an issue where decryption based traffic failed on Explicit Proxy nodes.

Fixed an issue where websites with a no-decrypt policy rule were decrypted in traffic log when using a Google Chrome browser with PQC enabled

Fixed an issue where the firewall displayed the SFP ports as

PowerDown

when the SFP transceiver was removed and reinserted or the port was shut down and brought back up on the peer device.

Fixed an issue where a memory overwrite occurred during HTTP/2 header inflation.

Added CPLD enhancement to capture external power issues.

Fixed a kernel panic caused by a third-party issue.

(

PA-5450 firewalls only

) Fixed an issue where the Data Processing Card (DPC) restarted due to path monitor failure after QSFP28 disconnected from the Network Processing Card (NPC).

Fixed an issue where, when the GlobalProtect app was installed on iOS endpoints and the gateway was configured to accept cookies, the app remained in the

Connecting

stage after authentication, and the GlobalProtect log displayed the error message

User is not in allow list

. This occurred when the app was restarted or when the app attempted to reconnect after disconnection.