...
BugZero updated this defect 20128 days ago.
The earliest recollection of this bug is traced back to PAN-OS 8.1.17 - January 09, 2024. This bug is fixed in PAN-OS versions 9.1.5, 8.1.17. Fixed an issue where the Host Evasion Threat ID signature did not trigger for the initial session even after the DNS response was received before the session expired. For more information: https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-release-notes/pan-os-8-1-addressed-issues/pan-os-8-1-17-addressed-issues https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-release-notes/pan-os-9-1-addressed-issues/pan-os-9-1-5-addressed-issues
8.95
Fixed an issue wherer DNS proxy TCP connections were processed incorrectly, which caused a process (`dnsproxy`) to stop responding.8.95
Fixed an issue where, in two separate but simultaneous sessions, the same software packet buffer was owned and processed.8.95
Fixed an issue where the dataplane restarted repeatedly after a reboot due to an internal path monitoring failures until a power cycle.8.95
Fixed an issue where a host information profile (HIP) report XML buffer caused a memory leak9.5
Fixed an intermittent issue where the presence of an Anti-Spyware profile in a Security policy rule that matched DNS traffic caused DNS responses to be malformed in transit.8.95
Fixed an issue wherer DNS proxy TCP connections were processed incorrectly, which caused a process (`dnsproxy`) to stop responding.8.95
Fixed an issue where, in two separate but simultaneous sessions, the same software packet buffer was owned and processed.8.95
Fixed an issue where the dataplane restarted repeatedly after a reboot due to an internal path monitoring failures until a power cycle.8.95
Fixed an issue where a host information profile (HIP) report XML buffer caused a memory leak9.5
Fixed an intermittent issue where the presence of an Anti-Spyware profile in a Security policy rule that matched DNS traffic caused DNS responses to be malformed in transit.8.95
Fixed an issue wherer DNS proxy TCP connections were processed incorrectly, which caused a process (`dnsproxy`) to stop responding.8.95
Fixed an issue where, in two separate but simultaneous sessions, the same software packet buffer was owned and processed.8.95
Fixed an issue where the dataplane restarted repeatedly after a reboot due to an internal path monitoring failures until a power cycle.8.95
Fixed an issue where a host information profile (HIP) report XML buffer caused a memory leak9.5
Fixed an intermittent issue where the presence of an Anti-Spyware profile in a Security policy rule that matched DNS traffic caused DNS responses to be malformed in transit.