fix(container): update image adguard/adguardhome to v0.107.41

[renovate]

This PR contains the following updates:

Package	Update	Change
adguard/adguardhome	patch	v0.107.35 -> v0.107.41

---

Release Notes

AdguardTeam/AdGuardHome (adguard/adguardhome)

v0.107.41

Compare Source

See also the v0.107.41 GitHub milestone.

NOTE: Add new changes BELOW THIS COMMENT.
-->

Security

• Go version has been updated to prevent the possibility of exploiting the
  CVE-2023-45283 and CVE-2023-45284 Go vulnerabilities fixed in
  Go 1.20.11.

Added

• Ability to specify subnet lengths for IPv4 and IPv6 addresses, used for rate
  limiting requests, in the configuration file (#​6368).
• Ability to specify multiple domain specific upstreams per line, e.g.
  [/domain1/../domain2/]upstream1 upstream2 .. upstreamN (#​4977).

Changed

• The height of ready-to-use filter lists has been increased (#​6358).
• Improved authentication failure logging (#​6357).

Configuration Changes

• New properties dns.ratelimit_subnet_len_ipv4 and
  dns.ratelimit_subnet_len_ipv6 in the configuration file (#​6368).

Fixed

• Missing timezone on schedule form submission (#​6401).
• Average request processing time calculation (#​6220).
• Redundant shortening long client names in the Top Clients table (#​6338).
• Scrolling column headers in the tables (#​6337).
• $important,dnsrewrite rules do not take precedence over allowlist rules
  (#​6204).
• Dark mode DNS rewrite background (#​6329).
• Issues with QUIC and HTTP/3 upstreams on Linux (#​6335).

v0.107.40

Compare Source

See also the v0.107.40 GitHub milestone.

Changed

• Block and Unblock buttons of the query log moved to the tooltip menu
  (#​684).

Fixed

• Dashboard tables scroll issue (#​6180).
• The time shown in the statistics is one hour less than the current time
  (#​6296).
• Issues with QUIC and HTTP/3 upstreams on FreeBSD (#​6301).
• Panic on clearing the query log (#​6304).

v0.107.39

Compare Source

See also the v0.107.39 GitHub milestone.

Security

• Go version has been updated to prevent the possibility of exploiting the
  CVE-2023-39323 and CVE-2023-39325 Go vulnerabilities fixed in
  Go 1.20.9 and Go 1.20.10.

Added

• Ability to edit static leases on DHCP settings page (#​1700).
• Ability to specify for how long clients should cache a filtered response,
  using the Blocked response TTL field on the DNS settings page (#​4569).

Changed

• ipset entries are updated more frequently (#​6233).
• Node.JS 16 is now required to build the frontend.

Fixed

• Incorrect domain-specific upstream matching for DS queries (#​6156).
• Improper validation of password length (#​6280).
• Wrong algorithm for filtering self addresses from the list of private upstream
  DNS servers (#​6231).
• An accidental change in DNS rewrite priority (#​6226).

v0.107.38

Compare Source

See also the v0.107.38 GitHub milestone.

Fixed

• Incorrect original answer when a response is filtered (#​6183).
• Comments in the Fallback DNS servers field in the UI (#​6182).
• Empty or default Safe Browsing and Parental Control settings (#​6181).
• Various UI issues.

v0.107.37

Compare Source

See also the [v0.107.37 GitHub milestone][ms-v0.107.37].

Security

• Go version has been updated to prevent the possibility of exploiting the
  CVE-2023-39318, CVE-2023-39319, and CVE-2023-39320 Go vulnerabilities fixed in
  [Go 1.20.8][go-1.20.8].

Added

• AdBlock-style syntax support for ignored domains in logs and statistics
  ([#​5720]).
• [Strict-Transport-Security][hsts] header in the HTTP API and DNS-over-HTTPS
  responses when HTTPS is forced ([#​2998]). See [RFC 6797][rfc6797].
• UI for the schedule of the service-blocking pause ([#​951]).
• IPv6 hints are now filtered in case IPv6 addresses resolving is disabled
  ([#​6122]).
• The ability to set fallback DNS servers in the configuration file and the UI
  ([#​3701]).
• While adding or updating blocklists, the title can now be parsed from
  ! Title: definition of the blocklist's source ([#​6020]).
• The ability to filter DNS HTTPS records including IPv4 and IPv6 hints
  ([#​6053]).
• Two new metrics showing total number of responses from each upstream DNS
  server and their average processing time in the Web UI ([#​1453]).
• The ability to set the port for the pprof debug API, see configuration
  changes below.

Changed

• $dnsrewrite rules containing IPv4-mapped IPv6 addresses are now working
  consistently with legacy DNS rewrites and match the AAAA requests.
• For non-A and non-AAAA requests, which has been filtered, the NODATA response
  is returned if the blocking mode isn't set to Null IP. In previous versions
  it returned NXDOMAIN response in such cases.

Configuration Changes

In this release, the schema version has changed from 24 to 27.

• Ignore rules blocking . in querylog.ignored and statistics.ignored have
  been migrated to AdBlock syntax (|.^). To rollback this change, restore the
  rules and change the schema_version back to 26.

• Filtering-related settings have been moved from dns section of the YAML
  configuration file to the new section filtering:

v0.107.36

Compare Source

See also the v0.107.36 GitHub milestone.

Security

• Go version has been updated to prevent the possibility of exploiting the
  CVE-2023-29409 Go vulnerability fixed in Go 1.20.7.

Deprecated

• Go 1.20 support. Future versions will require at least Go 1.21 to build.

Fixed

• Inability to block queries for the root domain, such as NS . queries, using
  the Disallowed domains feature on the DNS settings page (#​6049). Users
  who want to block . queries should use the |.^ AdBlock rule or a similar
  regular expression.
• Client hostnames not resolving when upstream server responds with zero-TTL
  records (#​6046).

Removed

• Go 1.19 support, as it has reached end of life.

---

Configuration

📅 Schedule: Branch creation - "on saturday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.