2026-05-20

Intra2net Software Update 7.0.4

Modernisation of the VPN service

Modernisation of the VPN service for IPSec connections

• Introduction of the new IPSec-VPN service strongSwan 6 for a future-proof VPN infrastructure
• Preparation for modern encryption methods and IKEv2
• New installations or systems without existing IPsec connections use strongSwan 6 by default
• Existing systems will stay on strongSwan 4 for now
• Activate the new VPN service under "Services > VPN > Settings"
• More details on the new VPN service can be found in the manual

Improvements to WireGuard VPN

• Enhanced logging for misconfigurations
• Pre-shared keys for WireGuard VPN connections are now masked by default and can be copied via a button

Further improvements

• Automatic DHCP lease renewal for still-active IP addresses. Helpful for devices in "Connected Standby" mode
• Fix for Linux kernel security vulnerabilities "copy fail", "dirty frag" and "ssh-keysign-pwn"
• Enhanced image preview security in the web groupware

Cumulative security updates fix the following vulnerabilities

• (httpd-2.4.67: CVE-2026-33523, CVE-2026-24072, ImageMagick-7.1.2-21, kernel-5.15.207: CVE-2026-31431, CVE-2026-43284, CVE-2026-46333, linux-firmware-20260410, microcode_ctl-2.1-51)

Aktualisierung von Linux-Basisdiensten

• (7zip-26.01, openssh-10.3p1, rust-1.95.0, strongswan-6.0.6)

Back to overview