Pi-holeUpdate schließt Sicherheitslücken und liefert mehr Performance 23.02.2026

The Pi-hole development team has released updates for its DNS ad blocker, addressing two security vulnerabilities in the web interface and enhancing performance, particularly on older Raspberry Pi models. The updates, which include FTL 6.5, Web 6.4.1, and Core 6.4, patch "Stored HTML-Injection" flaws (CVE-2026-26952 and CVE-2026-26953), both rated with a medium CVSS score of 5.4. Performance improvements include faster startup times due to asynchronous import of query history and a new configuration option, `database.forceDisk`, which moves the SQLite3 database to disk to reduce memory usage. Additionally, the update process for blocklists (Gravity) has been made more efficient, reducing update times by up to 16% in real-time and 22% in CPU time. Existing installations can be updated by running "sudo pihole -up".














