Emergency Palo Alto Networks Content Update

[icecream-guy]

Date: Tue, Jan 26, 2021 at 4:29 PM

Applications and Threats Content Release Notes
Version 8368
Notices
•   Palo Alto Networks released this emergency content update to add coverage for two critical vulnerabilities for which proof-of-concept code exists in the wild:
o   Arbitrary Code Execution Vulnerability in Apache ActiveMQ (CVE-2020-11998)
o   Use-After-Free Vulnerability in Payments in Google Chrome on Android (CVE-2020-16045)

Reminders:
•   (1/20/2021) Palo Alto Networks announced a change to the PDF Antivirus signature algorithm that is scheduled for February 3, 2021.

Action Required: You must ensure that your firewalls are running PAN-OS 8.1 or a later PAN-OS release with Applications and Threats content version 8367 or a later version to continue receiving the protection provided by PDF Antivirus signatures after February 3, 2021. Review the customer notice for more information.