Current File : //proc/self/root/backups/router/usr/local/opnsense/changelog/25.7.4.htm
<p>Hey everyone,</p><p>Updates are slower than usual at the moment, but it is also relatively calm out there security-wise. While this finally ships Kea version 3 we are still working on the package manager version 2 and Suricata 8 with good results. Stay tuned!</p><p>Here are the full patch notes:</p><p><ul><li>system: fix reconfigure control on HA status page for small viewports</li><li>system: add pluginctl -m and -v options for model migrations and validations calls</li><li>system: add "power off" backend action to GUI cron options</li><li>interfaces: replace MAC vendor database from py-netaddr with a simple local implementation</li><li>interfaces: refactor getting both devices from interface in settings page</li><li>interfaces: get both devices of interface in one call</li><li>interfaces: fix flags display in interface overview detail</li><li>firewall: treat "skip" protocol as a string to avoid syntax error</li><li>firewall: improve alias parsing performance in diagnostics page</li><li>intrusion detection: make grids virtual to fix performance issues</li><li>kea-dhcp: honour IPv4 client specific reservation domain name option (contributed by NOYB)</li><li>lang: new Ukrainian language and assorted updates</li><li>monit: fix migration weirdness with run/post use</li><li>unbound: add support for TXT records in host overrides</li><li>backend: add "!" operator to execute and flush cache when it exists</li><li>mvc: remove empty string fallbacks for backend invokes that are no longer needed</li><li>mvc: more style changes on existing core models</li><li>mvc: disable Dnsmasq/Unbound template generation</li><li>mvc: remove getDescription() overlay in ModelRelationField</li><li>ui: legacy_html_escape_form_data() was not escaping keys only data elements[<a target="_blank" href="https://www.cve.org/cverecord?id=CVE-2025-34182">1</a>] (reported by Alex Williams from Pellera Technologies)</li><li>ui: do not add an empty option into an empty option group</li><li>ui: add datetime-local to field types</li><li>plugins: os-caddy 2.0.4[<a target="_blank" href="https://github.com/opnsense/plugins/blob/stable/25.7/www/caddy/pkg-descr">2</a>]</li><li>plugins: os-netbird 1.1 fixes service startup and switches to syslog (contributed by Bethuel Mmbaga)</li><li>plugins: os-theme-advanced 1.1 fixes styling issues on 25.7 (contributed by Jaka Prašnikar)</li><li>plugins: os-zabbix-agent 1.17[<a target="_blank" href="https://github.com/opnsense/plugins/blob/stable/25.7/net-mgmt/zabbix-agent/pkg-descr">3</a>]</li><li>plugins: os-zabbix-proxy 1.14[<a target="_blank" href="https://github.com/opnsense/plugins/blob/stable/25.7/net-mgmt/zabbix-proxy/pkg-descr">4</a>]</li><li>ports: dnspython 2.8.0[<a target="_blank" href="https://dnspython.readthedocs.io/en/stable/whatsnew.html">5</a>]</li><li>ports: kea 3.0.1[<a target="_blank" href="https://downloads.isc.org/isc/kea/3.0.1/Kea-3.0.1-ReleaseNotes.txt">6</a>]</li><li>ports: libpfctl 0.17</li><li>ports: lighttpd 1.4.82[<a target="_blank" href="https://www.lighttpd.net/2025/9/12/1.4.82/">7</a>]</li><li>ports: nss 3.116[<a target="_blank" href="https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_116.html">8</a>]</li><li>ports: openvpn 2.6.15[<a target="_blank" href="https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn26#Changesin2.6.15">9</a>]</li><li>ports: php 8.3.26[<a target="_blank" href="https://www.php.net/ChangeLog-8.php#8.3.26">10</a>]</li><li>ports: py-requests 2.32.5</li><li>ports: suricata 7.0.12[<a target="_blank" href="https://suricata.io/2025/09/16/suricata-8-0-1-and-7-0-12-released/">11</a>]</li><li>ports: unbound 1.24.0[<a target="_blank" href="https://nlnetlabs.nl/projects/unbound/download/#unbound-1-24-0">12</a>]</li></ul></p><p><br>Stay safe,<br> Your OPNsense team</p>
Mini Shell