Dear Turris users,
We received a security notice in Python2 and Python3, where was found CVE-2018-20852, but after checking it, we saw that in OpenWrt 18.06, there is a vulnerable version. We fixed it in openwrt/packages repository in all branches together with updating Python2 and 3 to their latest versions. We would like to have your routers secure and that’s why we are releasing a new version of Turris OS 4.0 to you, which is just security release.
Release notes:
- python3: updated to version 3.6.9
- python2: updated to version 2.7.16
- python{2,3}: fix for CVE-2018-20852
When you are using our previous release - Turris OS beta6, you should be updated to this version within a few hours automatically. We appreciate any feedback for this release.
Enjoy the release.