diff --git a/source/CE_releases.rst b/source/CE_releases.rst index 01c99de1..1e0bf786 100644 --- a/source/CE_releases.rst +++ b/source/CE_releases.rst @@ -8,7 +8,7 @@ Community Edition :width: 600px :align: center -As of January 2015 there have been *277* releases leading to the latest version *24.1.3* +As of January 2015 there have been *278* releases leading to the latest version *24.1.4* named "Savvy Shark". diff --git a/source/releases/CE_24.1.rst b/source/releases/CE_24.1.rst index 20122505..d563a251 100644 --- a/source/releases/CE_24.1.rst +++ b/source/releases/CE_24.1.rst @@ -27,6 +27,63 @@ can be found below as well. * Full mirror list: https://opnsense.org/download/ +-------------------------------------------------------------------------- +24.1.4 (March 20, 2024) +-------------------------------------------------------------------------- + + +Suricata and Unbound have been updated to their latest versions. +Support for dynamic DNS VTI connections has also been added +amongst other things. + +We would like to thank Cedrik Pischem (Monviech) for upstreaming his +Caddy plugin to the official packages. If you already have this plugin +installed no further action has to be taken and updates should proceed +through the standard firmware channel from now on. Documentation for it +was added to the manual as well. + +For 24.7, we are currently working on a DHCP-Relay replacement, +a rewrite of the trust section in MVC as well as a new dashboard +implementation. It has been busy and we will keep it that way. :) + +Here are the full patch notes: + +* system: allow 0 length voucher passwords in authentication server +* system: merge static logging settings into existing MVC page +* system: fix handling of empty "serialusb" node set during import +* system: prevent empty "user" node to crash during boot +* interfaces: prevent modal x-axis overflow on packet capture page +* firewall: refactor schedule matching and fix an end-of-the-month bug +* firewall: fix incorrect packet counters statistics collection +* intrusion detection: align performValidation()->count() to use count() instead +* ipsec: optionally hook VTI tunnel configuration to connection up event to support dynamic DNS +* isc-dhcp: do not add interfaces for non-Ethernet types to relaying +* kea-dhcp: add domain-search, time-servers and static-routes client options to subnet configuration +* openvpn: various improvements for TAP servers +* wireguard: migrate non-netmask allowed IP entries and enforce them in validation +* wireguard: show proper names when public keys overlap between instances +* mvc: fix PHP_FLOAT_MIN being unreliable +* mvc: Add simple Message class and remove the previous Phalcon dependency +* mvc: refactor HostnameField, remove HostValidator dependency and add unit test +* mvc: add new static Autoconf class to access information collected by ifctl +* mvc: fix rewind() stream not supporting seeking error +* mvc: add copy of our html_safe() and use it in the translator +* ui: adjust margin of hr elements to match __mX helpers +* ui: add a button to allow textarea style edits of free-form tokenizers +* ui: when an error is raised make sure it is always visible +* ui: fix copy/paste buttons not showing for tokenizers in some situations +* plugins: os-bind 1.30 `[1] `__ +* plugins: os-caddy 1.5.2 `[2] `__ (contributed by Monviech) +* ports: expat 2.6.1 `[3] `__ +* ports: libpfctl 0.10 +* ports: nss 3.98 `[4] `__ +* ports: phalcon 5.6.2 `[5] `__ +* ports: sqlite 3.45.1 `[6] `__ +* ports: suricata 7.0.4 `[7] `__ +* ports: unbound 1.19.3 `[8] `__ + + + -------------------------------------------------------------------------- 24.1.3 (March 06, 2024) -------------------------------------------------------------------------- @@ -67,6 +124,10 @@ Here are the full patch notes: * ports: pcre2 10.43 `[5] `__ * ports: php 8.2.16 `[6] `__ +A hotfix release was issued as 24.1.3_1: + +* intrusion detection: fix whitespace issue in yaml configuration file + --------------------------------------------------------------------------