Dear Turris users,
We have just released Turris OS 3.11.17 to the RC branch.
In this release you can find mitigations in unbound, knot-resolver, and bind for NXNSAttack. Each resolver has different CVEs and if you want to read more about this issue colleagues from Knot Resolver wrote an article about that. There are security fixes for samba4, krb5 and git.
There were updated a few packages as well. For example nextcloud, btrfs-progs, sentinel-dynfw-client and updater-ng.
• git, samba4, krb5, unbound, knot-resolver, bind: security update
• updater-ng, nextcloud, btrfs-progs, resolver-conf: update
• python3-msgpack, sentinel-dynfw-client: update
If you want to try this release, you need to login to your router using SSH and write this command:
In this RC version, you might experience some bugs, if you find them, please let us know about them.