diff --git a/source/CE_releases.rst b/source/CE_releases.rst
index a47410c5..7420e390 100644
--- a/source/CE_releases.rst
+++ b/source/CE_releases.rst
@@ -8,7 +8,7 @@ Community Edition
:width: 600px
:align: center
-As of January 2015 there have been *324* releases leading to the latest version *25.7.5*
+As of January 2015 there have been *325* releases leading to the latest version *25.7.6*
named "Visionary Viper".
diff --git a/source/releases/BE_24.10.rst b/source/releases/BE_24.10.rst
index 3acc61e0..0888a145 100644
--- a/source/releases/BE_24.10.rst
+++ b/source/releases/BE_24.10.rst
@@ -251,7 +251,7 @@ Here are the full patch notes:
* ports: libpfctl 0.14
* ports: monit 5.34.2 `[13] `__
* ports: nss 3.106 `[14] `__
-* ports: openssh 9.9.p1 `[15] `__
+* ports: openssh 9.9p1 `[15] `__
* ports: php 8.2.25 `[16] `__
* ports: py-duckdb 1.1.3 `[17] `__
* ports: syslog-ng 4.8.1 `[18] `__
diff --git a/source/releases/BE_25.10.rst b/source/releases/BE_25.10.rst
index 2225976c..429aac34 100644
--- a/source/releases/BE_25.10.rst
+++ b/source/releases/BE_25.10.rst
@@ -140,7 +140,6 @@ Here are the full patch notes against version 25.4.3:
* firmware: hide community plugins by default and add a checkbox to unhide them on the same page
* firmware: introduce a new support tier 4 for development and otherwise unknown plugins
* firmware: disable the FreeBSD-kmods repository by default
-* firmware: sunset mirror dns-root.de (many thanks to Alexander Lauster for maintaining it for almost a decade!)
* firmware: opnsense-version: support more elaborate -R replacement
* firmware: store update and upgrade logs in edge cases
* firmware: opnsense-version: support file based -R option
diff --git a/source/releases/CE_24.7.rst b/source/releases/CE_24.7.rst
index 792f70a6..7cc76030 100644
--- a/source/releases/CE_24.7.rst
+++ b/source/releases/CE_24.7.rst
@@ -372,7 +372,7 @@ Here are the full patch notes:
* plugins: os-wazuh-agent 1.1 `[8] `__
* ports: monit 5.34.2 `[9] `__
* ports: nss 3.105 `[10] `__
-* ports: openssh 9.9.p1 `[11] `__
+* ports: openssh 9.9p1 `[11] `__
* ports: pkg fix for for embedded libfetch when doing CRL verification
* ports: py-duckdb 1.1.2 `[12] `__
* ports: syslog-ng 4.8.1 `[13] `__
diff --git a/source/releases/CE_25.7.rst b/source/releases/CE_25.7.rst
index ac98bcd9..bf29aa0f 100644
--- a/source/releases/CE_25.7.rst
+++ b/source/releases/CE_25.7.rst
@@ -28,6 +28,67 @@ can be found below as well.
* Full mirror list: https://opnsense.org/download/
+--------------------------------------------------------------------------
+25.7.6 (October 22, 2025)
+--------------------------------------------------------------------------
+
+
+The usual lot of additions and reliability fixes is being rounded off with
+Suricata version 8 and a new package manager version 2 almost two years in the
+making -- at least for our project.
+
+Please be aware that during the update check the new package manager will be
+installed, but will fail to report the update status like it always had before
+and so you will end up with an error that will require checking for updates
+again. The fix is in this update, but impossible to install without upgrading
+the package manager first. We hope this will only be a minor inconvenience
+during the process.
+
+Syslog-ng is also being updated and includes a fix that previously prevented
+2.9.x from shipping since it would hang the boot during daemonize. Many
+thanks to the authors for quickly picking this up and providing a fixed version!
+
+Here are the full patch notes:
+
+* system: safeguard config history delete and revert by requiring POST
+* system: change atrun interval to every minute
+* system: use new file_safe() in two instances
+* system: improve the HA VIP sync code
+* interfaces: fix permission of packet capture file in strict security mode
+* firewall: refactor live log using a ring buffer
+* firewall: add toggles to disable selected automatic rules
+* firewall: enable "safe delete" for categories
+* firewall: improved stats rendering on automation rules
+* firewall: allow searching aliases in automation rules inspect mode by IP address
+* dnsmasq: strict hostname and domain validation plus improved ipset validations
+* firmware: package manager upgrade changes for pkg 2.x
+* intrusion detection: remove obsolete "ac-bs" pattern matcher algorithm
+* ipsec: allow underscores in PSK identifiers
+* openvpn: add support for pushing excluded routes via net_gateway (contributed by Patrice Damezin)
+* openvpn: allow multiple domains settings for client connection (contributed by Krisztian Ivancso)
+* unbound: use file_safe() for root hint creation
+* unbound: deprecate unmaintained AdAway blocklist (contributed by Maurice Walker)
+* wireguard: add debug option to instances
+* backend: add file_safe() helper for atomic file creation
+* mvc: add RegexField to properly validate PCRE2 syntax
+* mvc: support arrays in search clauses
+* rc: make sure /var/lib/php/tmp can be accessed by "other" users
+* rc: do not clear /tmp on a diskless install
+* ui: assorted adjustments for dark theme
+* ui: always show bootgrid reset button
+* plugins: os-ddclient 1.28 `[1] `__
+* plugins: os-git-backup 1.1 `[2] `__
+* plugins: q-feeds-connector 1.2 `[3] `__ `[4] `__
+* plugins: os-squid 1.4 works around CVE-2025-62168 (contributed by m.a.x. it)
+* plugins: os-zabbix-proxy 1.15 `[5] `__
+* ports: openssh 10.2p1 `[6] `__
+* ports: pkg 2.3.1
+* ports: python 3.11.14 `[7] `__
+* ports: suricata 8.0.1 `[8] `__ `[9] `__
+* ports: syslog-ng 4.10.2 `[10] `__
+
+
+
--------------------------------------------------------------------------
25.7.5 (October 08, 2025)
--------------------------------------------------------------------------