Zimbra Releases/8.8.7

Revision as of 16:56, 8 March 2018 by David Bingham (talk | contribs)
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

Zimbra Collaboration 8.8.7 GA Release

Check out the "Fixed Issues", "Known Issues" , "ZeXtras Suite Changelog" and "Security Fixes" for this version of Zimbra Collaboration. As always, you’re encouraged to tell us what you think in the Forums, or file a bug in Bugzilla.

NOTE: If you are upgrading and/or migrating from an older version of Zimbra to Zimbra 8.8 Production Ready, please read "Things to Know Before Upgrading" and "First Steps with the Zimbra NG Modules" for critical information before you upgrade.

Fixed Issues (Bugzilla query)

107793 zmmigrateattrs throws exceptions
107788 Value of zimbraLastLogonTimeStamp is stored in LDAP even after migration
107796 zmrestoreoffline -h hangs if mailboxd is running
108874 Change stack trace log level to debug for getItem failure
108875 Outlook is not quitting by clicking on ""Exit Outlook & Upgrade"" button
108219 Error handling for the sieve filter match operation was changed in ZCS 8.7.11
108237 Error handling for the sieve filter matchCondition used for replaceheader and deleteheader
108876 Alert not displayed for expired license with remote IMAP server
100973 MacOutlook: Meeting response received by Outlook from DL users does not get updated in Scheduling tab
108877 "CreateZimbraProfile.exe" blank window flashing in ZCO installation
108878 Outlook crashes when selecting user from outside domain
108613 Organizer see attendee status as Tentative instead of Accepted for proposed new time in invite by attendee
108692 Unable to close time frame in Calendar with Month view
107700 Some Spaces removed in RFC 2047 encoded subject
108879 IMAPD (remote IMAP) returns no more than 1000 messages for UID SEARCH
108709 ZWC affected by Mailsploit due to default zimbraPrefShortEmailAddress TRUE
108777 Calendar read only on MacOS High Sierra with Exchange Account
108414 NPE in ImapListener causes mailbox lock to not be released
108786 Persistent XSS - content-location [CWE-79]

Known Issues (Bugzilla query)

108805 ZCS886 has the wrong admin guide

ZeXtras Suite Changelog

Zimbra Chat:
  • Multiple chat messages will be displayed as a single email in the chat history folder;
  • Critical performance improvements for users with hundreds of buddies;
  • Several chat window inconsistencies that happened when receiving messages while being in "Busy" status have been rationalised;
  • Searching for a buddy will not expand all buddy groups;
  • Fixed a bug that caused multi-row input not to be trimmed correctly thus breaking multiline messages;
Zimbra Drive:
  • Fixed a compatibility issue that arose when ownCloud or NextCloud were proxied through an apache server;
  • Added transparent handling of multiserver capabilities;
  • Fixed an encoding-related issue;
NG Modules:

Backup NG

  • Fixed an error in the CoherencyCheck operation which caused objects to be treated as corrupted when their parent directory was not in the backup;
  • INTERNAL/LICENSE General account limitation are now used rather than archiving limitation when Backup NG is present.

Mobile NG

  • INTERNAL/JETTY Added a workaround to avoid triggering a Jetty memory leak bug;
  • Fixed a logic loophole that could cause a mobile synchronization to get stuck when trying to synchronize a folder whose mount point was invalid (e.g. a revoked share);
  • "conv" type folders are now supported;
    • Improved error handling when the parsing of a badly formatted date fails;
    • Fixed a bug affecting Android devices that caused Invitations to be sent without proper organizer data;
  • X-Originating-IP header for Active sync emails now complies to the zimbraSmtpSendAddOriginatingIP setting;
  • When the organizer edits appointment from a mobile device all attendees' status is now reset to "awaiting response";
  • Added a workaround to properly handle broken emails with bad root Content-Transfer-Encoding;
  • The mobile ping logic has been improved to avoid the current ping to fail when a calendar item gets deleted during the synchronization;
  • Inline attachments from an original message on SmartReply action are now included;
  • The "completed" flag is now properly handled (synchronize as complete on other active sync devices, remove flag on Zimbra);


  • Added an asynchronous delete algorithm for non-local storages such as S3 which allows to avoid waiting for deletions on remote stores and retry failed deletions;
  • Fixed a bug in the deletion of s3 stores from web ui and CLI;

Security Fixes

Information about security fixes, security response policy and vulnerability rating classification are listed below. See the Zimbra Security Response Policy and the Zimbra Vulnerability Rating Classification information below for details.

Bug# Summary CVE-ID CVSS
Fix Release or
Patch Version
108786 Persistent XSS CWE-79 CVE-2018-6882 4.3 Minor 8.7 Patch 1 (est.)
108709 Mailsploit tba tba tba 8.7 Patch 1 (est.)

Quick note: Open Source repo

Downloading and building our Zimbra Code? Keep reading... Starting ZCS 8.7.6 and above we have new steps to download, build and see our code via Github:

Try Zimbra

Try now Zimbra Collaboration without any cost with the 60-day free Trial.
Get it now »

Want to get involved?

You can contribute in the Community, in the Wiki, in the Code, or developing Zimlets.
Find out more. »

Looking for a Video?

Visit our YouTube Channel to keep posted about Webinars, technology news, Product overviews and more.
Go to the YouTube Channel »

Jump to: navigation, search