Update docker.io/pihole/pihole Docker tag to v2026.04.1
On all three nodes I upgraded Pi-hole successfully by means of fully automated Watchtower Docker container update with dependency update facilitated by Mend's Renovate Bot.
This MR contains the following updates:
| Package | Update | Change |
|---|---|---|
| docker.io/pihole/pihole | minor | 2026.02.0 → 2026.04.1 |
Release Notes
pi-hole/docker-pi-hole (docker.io/pihole/pihole)
v2026.04.1
What's Changed
New Contributors
Full Changelog: https://github.com/pi-hole/docker-pi-hole/compare/2026.04.0...2026.04.1
New component versions included in this tag:
What's Changed (FTL v6.6.1)
- Add new
GET /api/config/_propertiesendpoint by @DL6ER in pi-hole/FTL#2356 - Fix thread-safety issues causing SIGSEGV under concurrent API load by @DL6ER in pi-hole/FTL#2835
- fix: fix rare race condition for SHM strings in API handlers by @DL6ER in pi-hole/FTL#2833
- Accept punycode domains that libidn2 rejects under IDNA2008 by @DL6ER in pi-hole/FTL#2838
- Improve shutdown diagnostics to identify SIGTERM source by @DL6ER in pi-hole/FTL#2839
- Resolve empty backtraces when addr2line is not installed by @DL6ER in pi-hole/FTL#2831
- Improve thread-safety for concurrent API requests by @DL6ER in pi-hole/FTL#2847
- Don't skip device lookup when resolver.macNames is disabled by @DL6ER in pi-hole/FTL#2846
- Fix linker error when compiling w/o optimization by @aeolio in pi-hole/FTL#2850
- Clarify
dns.blockESNIwording by @darkexplosiveqwx in pi-hole/FTL#2784 - Preserve log file path config when fopen fails by @DL6ER in pi-hole/FTL#2834
Security advisories
- https://github.com/pi-hole/pi-hole/security/advisories/GHSA-6w8x-p785-6pm4
- Fixed with : pi-hole/FTL@
88c569aand pi-hole/pi-hole@7ccb8dd
- Fixed with : pi-hole/FTL@
- https://github.com/pi-hole/FTL/security/advisories/GHSA-9cqv-839p-gpq2
- Fixed with : pi-hole/FTL@
0c46e4e
- Fixed with : pi-hole/FTL@
New Contributors
- @darkexplosiveqwx made their first contribution in pi-hole/FTL#2784
Full Changelog: https://github.com/pi-hole/FTL/compare/v6.6...v6.6.1
What's Changed (Core v6.4.2)
- Wipe version file before creating a new one by @yubiuser in pi-hole/pi-hole#6538
- Fix ownership permissions for containing directories in fix_owner_per… by @PromoFaux in pi-hole/pi-hole#6589
- Remove reference to /usr/local/bin/COL_TABLE by @darkexplosiveqwx in pi-hole/pi-hole#6594
- Skip apt cache update when pihole-meta is current by @PromoFaux in pi-hole/pi-hole#6581
- Set versions in /etc/pihole/versions to null if script fails by @yubiuser in pi-hole/pi-hole#6550
- Remove redundant touching of logfiles from systemd Service by @yubiuser in pi-hole/pi-hole#6601
- Loosen requirements for local file access for gravity by @yubiuser in pi-hole/pi-hole#6430
- Fix permission for *.etag files after gravity run by @yubiuser in pi-hole/pi-hole#6353
- add logrotate to DEB and RPM dependencies by @darkexplosiveqwx in pi-hole/pi-hole#6524
- Improve gravity error message including curl exit code and errormsg by @rdwebdesign in pi-hole/pi-hole#6605
Security advisories
- https://github.com/pi-hole/pi-hole/security/advisories/GHSA-6w8x-p785-6pm4
- Fixed with : pi-hole/pi-hole@
7ccb8ddand pi-hole/FTL@88c569a
- Fixed with : pi-hole/pi-hole@
Full Changelog: https://github.com/pi-hole/pi-hole/compare/v6.4.1...v6.4.2
v2026.04.0
What's Changed (Docker Specific - all related to CI/build)
- Group dependabot MRs to reduce MR spam by @yubiuser in #2004
- ci: switch image publishing to docker/github-builder by @crazy-max in #2008
- Readme Rework by @PromoFaux in #1958
- Replace Python test suite with BATS and consolidate workflows by @PromoFaux in #2009
- Add timeout to curl command in branch validation by @RynoCODE in #2011
- Use bats-assert library functions in BATS test suite by @Copilot in #2018
- ci: run build job on pull request event by @crazy-max in #2021
- Update github-builder to v1.5.0 and enable fail-fast by @yubiuser in #2022
New Contributors
- @crazy-max made their first contribution in #2008
- @RynoCODE made their first contribution in #2011
- @Copilot made their first contribution in #2018
Full Changelog: https://github.com/pi-hole/docker-pi-hole/compare/2026.02.0...2026.04.0
Component Release Notes
What's Changed (FTL v6.6)
- Fix possible resolver issue on armv5tel by @DL6ER in pi-hole/FTL#2781
- Introduce CMake options for optional dependencies by @aeolio in pi-hole/FTL#2795
- Fix build without mbedtls [v2] by @aeolio in pi-hole/FTL#2796
- Fix overTime data when database.DBimport = false by @DL6ER in pi-hole/FTL#2788
- Fix cross-compilation issues w/ custom toolchain by @aeolio in pi-hole/FTL#2797
- Add new option for controling name resolution via MAC address by @DL6ER in pi-hole/FTL#2790
- Fix obtaining client groups by name by @DL6ER in pi-hole/FTL#2791
- Ensure API sessions are restored before starting the HTTP server by @DL6ER in pi-hole/FTL#2803
- Add form-action 'self' to Content-Security-Policy by @yubiuser in pi-hole/FTL#2804
- Add query_frequency to /padd endpoint by @yubiuser in pi-hole/FTL#2806
- Guard query-count counters against unsigned underflow by @DL6ER in pi-hole/FTL#2815
- Add universal crash backtrace via _Unwind_Backtrace by @DL6ER in pi-hole/FTL#2811
- config: show totp_secret presence in CLI output by @DL6ER in pi-hole/FTL#2813
- Fix client count inflation for rate-limited queries by @DL6ER in pi-hole/FTL#2814
- Fix stack buffer overflow in get_process_name() by @DL6ER in pi-hole/FTL#2821
- Do not restart FTL while
pihole -gis still ongoing by @DL6ER in pi-hole/FTL#2419
Security Advisories
- GHSA-r7g8-3fj7-m5qq - Authorization bypass: CLI API sessions can import Teleporter archives and modify configuration reported by @mzalzahrani
- Remote Code Execution (RCE) via Newline Injection in Multiple Configuration Parameters reported by @T0X1Cx
New Contributors
- @aeolio made their first contribution in pi-hole/FTL#2795
Full Changelog: https://github.com/pi-hole/FTL/compare/v6.5...v6.6
What's Changed (Web v6.5)
- Amend teleporter help text that the long-term data is not included by @yubiuser in pi-hole/web#3721
- Do not use 3 columns when boxed layout is used by @rdwebdesign in pi-hole/web#3722
- Use ENTER instead of ⏎ by @yubiuser in pi-hole/web#3727
- Don't link to github releases if docker tag is nightly by @yubiuser in pi-hole/web#3718
- Do not try to compare component version when remote version info is not available by @yubiuser in pi-hole/web#3729
- Show loading overlay when adding/removing CNAME records as it requires a FTL restart by @yubiuser in pi-hole/web#3742
- fix: check on responseJSON when wrong password by @guybrush2105 in pi-hole/web#3693
- Remove the loggingButton from Settings > System > Actions by @yubiuser in pi-hole/web#3747
Security Advisories
-
Multiple Stored HTML Injections and XSS in different web interface pages reported by @andrejtomci
New Contributors
- @guybrush2105 made their first contribution in pi-hole/web#3693
Full Changelog: https://github.com/pi-hole/web/compare/v6.4.1...v6.5
What's Changed (Core v6.4.1)
- Remove additional ':' from debug log system time output by @yubiuser in pi-hole/pi-hole#6551
- Remove
readonlyfrom piholeNetworkFlush.sh to avoid error message by @rdwebdesign in pi-hole/pi-hole#6554 - Add antigravity index by @DL6ER in pi-hole/pi-hole#6573
- Fix return status capture of FTL check_download exists by @yubiuser in pi-hole/pi-hole#6572
- Remove misleading TODO comment for SetWebPassword by @10adnan75 in pi-hole/pi-hole#6531
Security Advisories
New Contributors
- @10adnan75 made their first contribution in pi-hole/pi-hole#6531
- @Copilot made their first contribution in pi-hole/pi-hole#6580
Full Changelog: https://github.com/pi-hole/pi-hole/compare/v6.4...v6.4.1
