diff --git a/technitium-dns/docker-compose.yml b/technitium-dns/docker-compose.yml index 3deb4c7b..6bad9179 100644 --- a/technitium-dns/docker-compose.yml +++ b/technitium-dns/docker-compose.yml @@ -2,7 +2,7 @@ version: "3.7" services: dns-server: - image: technitium/dns-server:13.6.0@sha256:b12182649647f7e28dd596f4089032099a94ab1bee2262d6679fa185238c5f02 + image: technitium/dns-server:14.2.0@sha256:b6a39621a5c6b37e6ca8c4b428a7e39531041e19be4b28285657c8c74374950b network_mode: host # ports: # - "5380:5380/tcp" #DNS web console (HTTP) @@ -39,4 +39,4 @@ services: - ${APP_DATA_DIR}/data:/etc/dns restart: on-failure # sysctls: - # - net.ipv4.ip_local_port_range=1024 65000 \ No newline at end of file + # - net.ipv4.ip_local_port_range=1024 65000 diff --git a/technitium-dns/umbrel-app.yml b/technitium-dns/umbrel-app.yml index 5c95a813..53a6a93b 100644 --- a/technitium-dns/umbrel-app.yml +++ b/technitium-dns/umbrel-app.yml @@ -2,25 +2,26 @@ manifestVersion: 1 id: technitium-dns category: networking name: Technitium DNS Server -version: "13.6.0" +version: "14.2.0" tagline: Block ads & malware at the DNS level for your entire network description: >- Technitium DNS Server is an open source authoritative, as well as recursive, DNS server that can be used for self hosting a DNS server for privacy & security. It works out-of-the-box with no or minimal configuration. releaseNotes: >- - This release includes several improvements: - - Added support for importing zone files when creating new zones - - Enhanced web GUI with customizable lists and improved zone record filtering - - Fixed DNS-over-QUIC connection handshake issue - - Updated Query Logs app with database VACUUM option - - Improved Geo apps with macro variable support for simpler configuration - - Added Ed25519 and Ed448 DNSSEC algorithm support - - Enabled use of user-specified DNSSEC private keys - - Improved DNS log output options and zone file parser compatibility - - Removed NS Revalidation feature due to complexity and resolution issues - - Introduced app preference ordering and updated several apps for it - - Improved DNS admin panel flexibility and log exporter header configuration - - Multiple minor fixes and usability enhancements + 🚨 This major release upgrades to .NET 9 runtime and includes important security fixes. All cluster nodes must be upgraded together to maintain compatibility. + + + Key highlights in this release: + - Fixed Denial of Service vulnerability in rate limiting implementation with redesigned QPM options + - Fixed Cache Poisoning vulnerability through IP fragmentation attacks + - Fixed DNSSEC Downgrade vulnerability that could bypass validation + - Added Clustering feature to manage multiple DNS server instances from a single console + - Added Two-factor authentication (2FA) support with TOTP + - Added MISP Connector App to block malicious domains from MISP feeds + - Updated Advanced Blocking App with configurable TTL for blocked responses + - Enhanced Log Exporter App with EDNS logging support + - Improved support for comment entries in Allow/Block List URLs + - Multiple bug fixes for zone file parsing, session validation, and app configuration loading Full release notes can be found at https://github.com/TechnitiumSoftware/DnsServer/blob/master/CHANGELOG.md @@ -38,4 +39,4 @@ path: "" defaultUsername: admin deterministicPassword: true submitter: highghlow -submission: https://github.com/getumbrel/umbrel/pull/1046 \ No newline at end of file +submission: https://github.com/getumbrel/umbrel/pull/1046