Difference between revisions of "Zimbra Releases/8.6.0/P9"

(Created page with "=Zimbra Collaboration 8.6.0 Patch 9 GA Release= Check out the '''"Fixed Issues"''', '''"Known Issues"''' and '''"Security Fixes"''' for thi...")
 
Line 33: Line 33:
 
         <tr><td class="col-md-1">  [https://bugzilla.zimbra.com/show_bug.cgi?id=108435 108435] </td><td class="col-md-10">  service.UNKNOWN_DOCUMENT exceptions observed in mailbox log after upgrade from 8710 to 880</td></tr>
 
         <tr><td class="col-md-1">  [https://bugzilla.zimbra.com/show_bug.cgi?id=108435 108435] </td><td class="col-md-10">  service.UNKNOWN_DOCUMENT exceptions observed in mailbox log after upgrade from 8710 to 880</td></tr>
 
</table>
 
</table>
 +
 +
=<div id="security">Security Fixes</div>=
 +
Information about security fixes, security response policy and vulnerability rating classification are listed below. See the [https://wiki.zimbra.com/wiki/Zimbra_Security_Response_Policy Zimbra Security Response Policy] and the [https://wiki.zimbra.com/wiki/Zimbra_Vulnerability_Rating_Classification Zimbra Vulnerability Rating] Classification information below for details.
 +
<div class="col-md-12">
 +
    <table class="table table-striped table-condensed">
 +
<tr>
 +
  <th style="background-color: #f15922; width: 80px;"><span style="color: #ffffff;">Bug#</span></th>
 +
  <th style="background-color: #f15922;"><span style="color: #ffffff;">Summary</span></th>
 +
  <th style="background-color: #f15922;"><span style="color: #ffffff;"><strong>CVE-ID</strong></span></th>
 +
  <th style="background-color: #f15922;"><span style="color: #ffffff;"><strong>CVSS<br>Score</strong></span></th>
 +
  <th style="text-align: center; background-color: #f15922;"><span style="color: #ffffff;"><strong>Zimbra<br>Rating</strong></span></th>
 +
  <th style="text-align: center; background-color: #f15922;"><span style="color: #ffffff;">Fix&nbsp;Release&nbsp;or <br>Patch&nbsp;Version</span></th>
 +
</tr>
 +
<tr>
 +
  <td class="col-md-1">[https://bugzilla.zimbra.com/show_bug.cgi?id=104294 104294] <br>[https://bugzilla.zimbra.com/show_bug.cgi?id=104456 104456]</td>
 +
  <td>CSRF [http://cwe.mitre.org/data/definitions/352.html CWE-352]</td>
 +
  <td>CVE-2016-3406</td>
 +
  <td>[https://nvd.nist.gov/cvss.cfm?calculator&amp;version=2&amp;vector=(AV:N/AC:H/Au:N/C:N/I:P/A:N) 2.6]</td>
 +
  <td style="text-align: center;">Minor</td>
 +
  <td style="text-align: center;">8.6 P8, 8.7.0</td>
 +
</tr>
 +
<tr>
 +
  <td>[https://bugzilla.zimbra.com/show_bug.cgi?id=100885 100885] <br> [https://bugzilla.zimbra.com/show_bug.cgi?id=100899 100899]</td>
 +
  <td>CSRF [http://cwe.mitre.org/data/definitions/352.html CWE-352]</td>
 +
  <td>CVE-2016-3403</td>
 +
  <td>[https://nvd.nist.gov/cvss.cfm?calculator&amp;version=2&amp;vector=(AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8]</td>
 +
  <td style="text-align: center;">Major</td>
 +
  <td style="text-align: center;">8.6 P8, 8.7.0</td>
 +
</tr>
 +
<tr>
 +
  <td>[https://bugzilla.zimbra.com/show_bug.cgi?id=103959 103959]</td>
 +
  <td>CSRF [http://cwe.mitre.org/data/definitions/352.html CWE-352]</td>
 +
  <td>CVE-2016-3404</td>
 +
  <td>[https://nvd.nist.gov/cvss.cfm?calculator&version=2&vector=(AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3]</td>
 +
  <td style="text-align: center;">Minor</td>
 +
  <td style="text-align: center;">8.6 P8, 8.7.0</td>
 +
</tr>
 +
<tr>
 +
  <td>[https://bugzilla.zimbra.com/show_bug.cgi?id=103961 103961]<br/>[https://bugzilla.zimbra.com/show_bug.cgi?id=104828 104828]</td>
 +
  <td>CSRF [http://cwe.mitre.org/data/definitions/352.html CWE-352]</td>
 +
  <td>CVE-2016-3405</td>
 +
  <td>[https://nvd.nist.gov/cvss.cfm?calculator&version=2&vector=(AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3]</td>
 +
  <td style="text-align: center;">Minor</td>
 +
  <td style="text-align: center;">8.6 P8, 8.7.0</td>
 +
</tr>
 +
</table>
 +
 +
==Quick note: Open Source repo==
 +
Downloading and building our Zimbra Code? Keep reading... Starting ZCS 8.7.6 and above we have new steps to download, build and see our code via Github:
 +
*https://github.com/Zimbra/zm-build
 +
 +
</div>
 +
</div>
 +
{{GuidePosts}}

Revision as of 22:04, 6 February 2018

Zimbra Collaboration 8.6.0 Patch 9 GA Release

Check out the "Fixed Issues", "Known Issues" and "Security Fixes" for this version of Zimbra Collaboration below. As always, you’re encouraged to tell us what you think in the Forums, or file a bug in Bugzilla.

NOTE: If you are upgrading and/or migrating from an older version of Zimbra to Zimbra 8.8 Production Ready, please read "Things to Know Before Upgrading" and "First Steps with the Zimbra NG Modules" for critical information before you upgrade.


Fixed Issues (Bugzilla query)

101227 CPU load & latency when open mail with data:image/png:base64 inline image
104365 Update timezones.ics to tzdata2017b
97710 Tasks causing slowness from ZWC and consuming CPU resources
103797 Description of a previous appointment comes up when changing mode from plain-text to html
107289 Printing work week shows wrong time
107288 EWS caches and logs cleartext password
97460 Need visual cue and hyperlink for url links when composing message
100281 Deleted/canceled appts remain on calendar
101584 QuickAdd location using GAL is not saved correctly > only name is kept
107826 Implement GetStreamingEvents EWS API(Phase 1)
107499 EWS: Resolve Name should return all the contact information
97126 Script Error (this._sharesGroup is undefined) when click to "Edit Properties" folder menu
101023 zimbraHelpAdvancedURL, zimbraHelpStandardURL and zimbraHelpAdminURL does not work
107646 There is an unexpected logout for a session in the HTML client.

Known Issues (Bugzilla query)

108435 service.UNKNOWN_DOCUMENT exceptions observed in mailbox log after upgrade from 8710 to 880

Security Fixes

Information about security fixes, security response policy and vulnerability rating classification are listed below. See the Zimbra Security Response Policy and the Zimbra Vulnerability Rating Classification information below for details.

Bug# Summary CVE-ID CVSS
Score
Zimbra
Rating
Fix Release or
Patch Version
104294
104456
CSRF CWE-352 CVE-2016-3406 2.6 Minor 8.6 P8, 8.7.0
100885
100899
CSRF CWE-352 CVE-2016-3403 5.8 Major 8.6 P8, 8.7.0
103959 CSRF CWE-352 CVE-2016-3404 4.3 Minor 8.6 P8, 8.7.0
103961
104828
CSRF CWE-352 CVE-2016-3405 4.3 Minor 8.6 P8, 8.7.0

Quick note: Open Source repo

Downloading and building our Zimbra Code? Keep reading... Starting ZCS 8.7.6 and above we have new steps to download, build and see our code via Github:



Try Zimbra

Try now Zimbra Collaboration without any cost with the 60-day free Trial.
Get it now »

Want to get involved?

You can contribute in the Community, in the Wiki, in the Code, or developing Zimlets.
Find out more. »

Looking for a Video?

Visit our YouTube Channel to keep posted about Webinars, technology news, Product overviews and more.
Go to the YouTube Channel »

Jump to: navigation, search