BugZero | Palo Alto Networks BugID PAN-134431 - Fixed an issue with Security Assertion Markup Lang...

OPERATIONAL DEFECT DATABASE

...

BugZero | Palo Alto Networks BugID PAN-134431 - Fixed an issue with Security Assertion Markup Lang...

Palo Alto Networks - Defect ID: PAN-134431

Fixed an issue with Security Assertion Markup Language (SAML) authentication where the firewall used old authd_id values, which resulted in failed authentication.

Palo Alto Networks - Defect ID: PAN-134431

Fixed an issue with Security Assertion Markup Language (SAML) authentication where the firewall used old authd_id values, which resulted in failed authentication.

Last updated on Invalid date

BugZero Risk Score
6.3 Medium

Overall: 6.3

Severity: 6.4

Community: 3.7

Lifecycle: 10.0

What is the BugZero Risk Score?

Palo Alto Networks Integration

Learn more about where this data comes from

Palo Alto Networks Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Description

The earliest recollection of this bug is traced back to PAN-OS 8.1.14 - July 22, 2025. This bug is fixed in PAN-OS versions 9.1.3, 8.1.14. Fixed an issue with Security Assertion Markup Language (SAML) authentication where the firewall used old authd_id values, which resulted in failed authentication. For more information: https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-release-notes/pan-os-8-1-addressed-issues/pan-os-8-1-14-addressed-issues https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-release-notes/pan-os-9-1-addressed-issues/pan-os-9-1-3-addressed-issues

Change history

No changes to display

Top Palo Alto Networks Defects

9.8Defect ID: PAN-186937
Fixed an issue where the firewall dropped packets decrypted using the SSL Decryption feature and Encapsulating Security Payload (ESP) IPSec packets that originated from the same firewall. This occurred when **Strict IP Address Check** was enabled in the zone protection profile (**Packet Based Attack > IP Drop**) and the packet's source IP address was the same as the egress interface address.
9.8Defect ID: PAN-175211
Fixed a memory leak issue in the mgmtsrvr process.
9.8Defect ID: PAN-206005
Fixed an issue where the `l7_misc` memory pool was undersized and caused connectivity loss when the limit was reached.
9.7Defect ID: PAN-143485
Fixed a memory leak issue related to a process (*devsrvr*).
9.7Defect ID: PAN-206243
Fixed an issue where the firewall reached the maximum disk usage capacity repeatedly in one day.

Palo Alto Networks Integration

Learn more about where this data comes from

Palo Alto Networks Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Palo Alto Networks - Defect ID: PAN-134431

Fixed an issue with Security Assertion Markup Language (SAML) authentication where the firewall used old authd_id values, which resulted in failed authentication.

Palo Alto Networks - Defect ID: PAN-134431

Fixed an issue with Security Assertion Markup Language (SAML) authentication where the firewall used old authd_id values, which resulted in failed authentication.

Last updated on Invalid date

BugZero Risk Score6.3 Medium

Bug Details

Links

Top Palo Alto Networks Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
6.3 Medium