|
|
|
@ -27,6 +27,63 @@ can be found below as well.
|
|
|
|
|
* Full mirror list: https://opnsense.org/download/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
--------------------------------------------------------------------------
|
|
|
|
|
24.1.4 (March 20, 2024)
|
|
|
|
|
--------------------------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Suricata and Unbound have been updated to their latest versions.
|
|
|
|
|
Support for dynamic DNS VTI connections has also been added
|
|
|
|
|
amongst other things.
|
|
|
|
|
|
|
|
|
|
We would like to thank Cedrik Pischem (Monviech) for upstreaming his
|
|
|
|
|
Caddy plugin to the official packages. If you already have this plugin
|
|
|
|
|
installed no further action has to be taken and updates should proceed
|
|
|
|
|
through the standard firmware channel from now on. Documentation for it
|
|
|
|
|
was added to the manual as well.
|
|
|
|
|
|
|
|
|
|
For 24.7, we are currently working on a DHCP-Relay replacement,
|
|
|
|
|
a rewrite of the trust section in MVC as well as a new dashboard
|
|
|
|
|
implementation. It has been busy and we will keep it that way. :)
|
|
|
|
|
|
|
|
|
|
Here are the full patch notes:
|
|
|
|
|
|
|
|
|
|
* system: allow 0 length voucher passwords in authentication server
|
|
|
|
|
* system: merge static logging settings into existing MVC page
|
|
|
|
|
* system: fix handling of empty "serialusb" node set during import
|
|
|
|
|
* system: prevent empty "user" node to crash during boot
|
|
|
|
|
* interfaces: prevent modal x-axis overflow on packet capture page
|
|
|
|
|
* firewall: refactor schedule matching and fix an end-of-the-month bug
|
|
|
|
|
* firewall: fix incorrect packet counters statistics collection
|
|
|
|
|
* intrusion detection: align performValidation()->count() to use count() instead
|
|
|
|
|
* ipsec: optionally hook VTI tunnel configuration to connection up event to support dynamic DNS
|
|
|
|
|
* isc-dhcp: do not add interfaces for non-Ethernet types to relaying
|
|
|
|
|
* kea-dhcp: add domain-search, time-servers and static-routes client options to subnet configuration
|
|
|
|
|
* openvpn: various improvements for TAP servers
|
|
|
|
|
* wireguard: migrate non-netmask allowed IP entries and enforce them in validation
|
|
|
|
|
* wireguard: show proper names when public keys overlap between instances
|
|
|
|
|
* mvc: fix PHP_FLOAT_MIN being unreliable
|
|
|
|
|
* mvc: Add simple Message class and remove the previous Phalcon dependency
|
|
|
|
|
* mvc: refactor HostnameField, remove HostValidator dependency and add unit test
|
|
|
|
|
* mvc: add new static Autoconf class to access information collected by ifctl
|
|
|
|
|
* mvc: fix rewind() stream not supporting seeking error
|
|
|
|
|
* mvc: add copy of our html_safe() and use it in the translator
|
|
|
|
|
* ui: adjust margin of hr elements to match __mX helpers
|
|
|
|
|
* ui: add a button to allow textarea style edits of free-form tokenizers
|
|
|
|
|
* ui: when an error is raised make sure it is always visible
|
|
|
|
|
* ui: fix copy/paste buttons not showing for tokenizers in some situations
|
|
|
|
|
* plugins: os-bind 1.30 `[1] <https://github.com/opnsense/plugins/blob/stable/24.1/dns/bind/pkg-descr>`__
|
|
|
|
|
* plugins: os-caddy 1.5.2 `[2] <https://github.com/opnsense/plugins/blob/stable/24.1/www/caddy/pkg-descr>`__ (contributed by Monviech)
|
|
|
|
|
* ports: expat 2.6.1 `[3] <https://github.com/libexpat/libexpat/blob/R_2_6_1/expat/Changes>`__
|
|
|
|
|
* ports: libpfctl 0.10
|
|
|
|
|
* ports: nss 3.98 `[4] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_98.html>`__
|
|
|
|
|
* ports: phalcon 5.6.2 `[5] <https://github.com/phalcon/cphalcon/releases/tag/v5.6.2>`__
|
|
|
|
|
* ports: sqlite 3.45.1 `[6] <https://sqlite.org/releaselog/3_45_1.html>`__
|
|
|
|
|
* ports: suricata 7.0.4 `[7] <https://suricata.io/2024/03/19/suricata-7-0-4-and-6-0-17-released/>`__
|
|
|
|
|
* ports: unbound 1.19.3 `[8] <https://nlnetlabs.nl/projects/unbound/download/#unbound-1-9-3>`__
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
--------------------------------------------------------------------------
|
|
|
|
|
24.1.3 (March 06, 2024)
|
|
|
|
|
--------------------------------------------------------------------------
|
|
|
|
@ -67,6 +124,10 @@ Here are the full patch notes:
|
|
|
|
|
* ports: pcre2 10.43 `[5] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.43>`__
|
|
|
|
|
* ports: php 8.2.16 `[6] <https://www.php.net/ChangeLog-8.php#8.2.16>`__
|
|
|
|
|
|
|
|
|
|
A hotfix release was issued as 24.1.3_1:
|
|
|
|
|
|
|
|
|
|
* intrusion detection: fix whitespace issue in yaml configuration file
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
--------------------------------------------------------------------------
|
|
|
|
|