Update technitium-dns to 14.2.0 (#4252)

technitium-dns/docker-compose.yml

@@ -2,7 +2,7 @@ version: "3.7"
 
 services:
   dns-server:
-    image: technitium/dns-server:13.6.0@sha256:b12182649647f7e28dd596f4089032099a94ab1bee2262d6679fa185238c5f02
+    image: technitium/dns-server:14.2.0@sha256:b6a39621a5c6b37e6ca8c4b428a7e39531041e19be4b28285657c8c74374950b
     network_mode: host 
     # ports:
       # - "5380:5380/tcp" #DNS web console (HTTP)
@@ -39,4 +39,4 @@ services:
       - ${APP_DATA_DIR}/data:/etc/dns
     restart: on-failure
     # sysctls:
-    #   - net.ipv4.ip_local_port_range=1024 65000
+    #   - net.ipv4.ip_local_port_range=1024 65000

technitium-dns/umbrel-app.yml

@@ -2,25 +2,26 @@ manifestVersion: 1
 id: technitium-dns
 category: networking
 name: Technitium DNS Server
-version: "13.6.0"
+version: "14.2.0"
 tagline: Block ads & malware at the DNS level for your entire network
 description: >-
   Technitium DNS Server is an open source authoritative, as well as recursive, DNS server that can be used for self hosting a DNS server for privacy & security.
   It works out-of-the-box with no or minimal configuration.
 releaseNotes: >-
-  This release includes several improvements:
-    - Added support for importing zone files when creating new zones
-    - Enhanced web GUI with customizable lists and improved zone record filtering
-    - Fixed DNS-over-QUIC connection handshake issue
-    - Updated Query Logs app with database VACUUM option
-    - Improved Geo apps with macro variable support for simpler configuration
-    - Added Ed25519 and Ed448 DNSSEC algorithm support
-    - Enabled use of user-specified DNSSEC private keys
-    - Improved DNS log output options and zone file parser compatibility
-    - Removed NS Revalidation feature due to complexity and resolution issues
-    - Introduced app preference ordering and updated several apps for it
-    - Improved DNS admin panel flexibility and log exporter header configuration
-    - Multiple minor fixes and usability enhancements
+  🚨 This major release upgrades to .NET 9 runtime and includes important security fixes. All cluster nodes must be upgraded together to maintain compatibility.
+
+
+  Key highlights in this release:
+    - Fixed Denial of Service vulnerability in rate limiting implementation with redesigned QPM options
+    - Fixed Cache Poisoning vulnerability through IP fragmentation attacks
+    - Fixed DNSSEC Downgrade vulnerability that could bypass validation
+    - Added Clustering feature to manage multiple DNS server instances from a single console
+    - Added Two-factor authentication (2FA) support with TOTP
+    - Added MISP Connector App to block malicious domains from MISP feeds
+    - Updated Advanced Blocking App with configurable TTL for blocked responses
+    - Enhanced Log Exporter App with EDNS logging support
+    - Improved support for comment entries in Allow/Block List URLs
+    - Multiple bug fixes for zone file parsing, session validation, and app configuration loading
 
 
   Full release notes can be found at https://github.com/TechnitiumSoftware/DnsServer/blob/master/CHANGELOG.md
@@ -38,4 +39,4 @@ path: ""
 defaultUsername: admin
 deterministicPassword: true
 submitter: highghlow
-submission: https://github.com/getumbrel/umbrel/pull/1046
+submission: https://github.com/getumbrel/umbrel/pull/1046