OPNsense has released Patch 1, delivering important security and stability improvements to further strengthen the platform.
This update addresses a configuration line injection vulnerability affecting multiple GUI text fields (reported by lujiefsi) and resolves a missing `legacy_html_escape_form_data()` function related to certificate handling in administration settings. These fixes enhance system integrity and reinforce OPNsense’s ongoing commitment to secure, reliable network infrastructure.
With continued responsiveness to community-reported findings, OPNsense demonstrates its proactive approach to maintaining a robust and secure open-source firewall platform.
Read the full patch notes here:
https://forum.opnsense.org/index.php?topic=52149.msg269527#msg269527
