Difference between revisions of "Zimbra Releases/8.8.9/P1"

m
 
Line 19: Line 19:
 
   <td class="col-md-1">[https://bugzilla.zimbra.com/show_bug.cgi?id=108970 108970]</td>
 
   <td class="col-md-1">[https://bugzilla.zimbra.com/show_bug.cgi?id=108970 108970]</td>
 
   <td> Persistent XSS - briefcase [CWE-79]</td>
 
   <td> Persistent XSS - briefcase [CWE-79]</td>
   <td>TBD</td>
+
   <td>CVE-2018-14425</td>
 
   <td style="text-align: center; ">3.5</td>
 
   <td style="text-align: center; ">3.5</td>
 
   <td style="text-align: center; "> Minor</td>
 
   <td style="text-align: center; "> Minor</td>

Latest revision as of 05:29, 20 July 2018

Zimbra Collaboration 8.8.9 Patch 1 GA Release

Check out the "Security Fixes", "Fixed Issues", "Zimbra NG Changelog" and "Known Issues" for this version of Zimbra Collaboration. Please refer "Patch Installation" section for Patch Installation instructions. As always, you’re encouraged to tell us what you think in the Forums, or file a bug in Bugzilla.

Security Fixes

Information about security fixes, security response policy and vulnerability rating classification are listed below. See the Zimbra Security Response Policy and the Zimbra Vulnerability Rating Classification information below for details.

Bug# Summary CVE-ID CVSS
Score
Zimbra
Rating
Fix Release or
Patch Version
108970 Persistent XSS - briefcase [CWE-79] CVE-2018-14425 3.5 Minor 8.8.9 Patch1

Software changes

Fixed Issues

Forgot password feature implementation

Zimbra NG Changelog

Admin Zimlet:
  • Cannot add S3 Bucket from Global Settings- >S3 Bucket screen
HSM:
  • Admin console becomes unusable if /opt/zimbra/cache directory doesn't exist, also increases CPU usage in few seconds
Docs Extension:
  • Briefcase document edit option is not working for latest revision of file
  • Briefcase document editor Text size option provides only two options
  • Clear formatting option not working in briefcase document
Docs LOOL Server:
  • Zimbra-docs-server restart fails

Known Issues

Forgot password UI work is under development for 2FA enabled users
Primary remote volume is moved to secondary volume after setting it as current volume in HSM module of Admin console Workaround: Volume can be set as current using "zxsuite hsm doUpdateVolume" command

Patch Installation

Before Installing the Patch

Before installing the patch, consider the following:

  • Patches are cumulative.
  • A full backup should be performed before any patch is applied. There is no automated roll-back.
  • Zimlet patches can include removing existing Zimlets and redeploying the patched Zimlet.
  • Only files or Zimlets associated with installed packages will be installed from the patch.
  • Switch to user zimbra before using ZCS CLI commands.
  • Important! You cannot revert to the previous ZCS release after you upgrade to the patch.
  • Important Note for ZCS Setup with Local ZCS repository: Customers who have setup local ZCS repository should first update the local repository by following instructions in wiki

Install the Patch

With 8.8.8 Patches, customers would not need to download any ZCS Patch builds. Patch packages can be installed by using Linux package management commands.

  • Please make note that, installing zimbra-patch package only updates the Zimbra core packages. administrator would need to upgrade other applicable packages like zimbra-chat, zimbra-network-modules-ng, zimbra-talk.
  • Note regarding Chat and Talk package conflict
    • zimbra-chat and zimbra-talk packages conflict each other.
    • Ubuntu will ask user's confirmation before removing already installed package and installing the conflicting package.
    • Redhat will give error if conflict found and user will have to remove installed package before installing conflicting package.


Please refer below steps for 8.8.9 Patch installation on Redhat and Ubuntu platforms:

Redhat

1. Installing zimbra packages individually

Install/Upgrade zimbra-patch on mailstore node for FOSS and NETWORK

  • As root, install the patch. Type
yum clean metadata 
yum check-update 
yum install zimbra-patch
  • Switch to user zimbra
su – zimbra
  • ZCS must be restarted to changes to take effect. Type
zmcontrol restart

Install/Upgrade zimbra-chat for FOSS

  • As root, Type below command.
yum install zimbra-chat 
  • Switch to user zimbra
su – zimbra
  • Zimbra mailbox service must be restarted to changes to take effect. Type
zmmailboxdctl restart

Install/Upgrade zimbra-talk and zimbra-network-modules-ng (NETWORK Only)

  • As root, Type below command.
yum clean metadata 
yum check-update 
yum install zimbra-network-modules-ng
yum install zimbra-talk
  • Switch to user zimbra
su – zimbra
  • Zimbra mailbox service must be restarted to changes to take effect. Type
zmmailboxdctl restart

Install/Upgrade zimbra-docs (NETWORK Only)

  • As root, Type below command.
yum install zimbra-docs
  • Switch to user zimbra
su – zimbra
  • Zimbra mailbox service must be restarted to changes to take effect. Type
zmmailboxdctl restart


2. Installing zimbra packages with system package upgrades

  • As root, type below command to clear yum cache
yum clean metadata
  • As root, type below command first time so the server sees there is a new zimbra-patch package in the 889 patch repository
yum check-update
  • As root, type below command to update most available packages.
yum update
  • Switch to user zimbra
su – zimbra
  • ZCS must be restarted to changes to take effect. Type
zmcontrol restart

Ubuntu

1. Installing zimbra packages individually

Install/Upgrade zimbra-patch on mailstore node for FOSS and NETWORK

  • As root, install the patch. Type
apt-get update
apt-get install zimbra-patch
  • Switch to user zimbra
su – zimbra
  • ZCS must be restarted to changes to take effect. Type
zmcontrol restart

Install/Upgrade zimbra-chat for FOSS

  • As root, Type below command.
apt-get install zimbra-chat 
  • Switch to user zimbra
su – zimbra
  • Zimbra mailbox service must be restarted to changes to take effect. Type
zmmailboxdctl restart

Install/Upgrade zimbra-talk and zimbra-network-modules-ng (NETWORK Only)

  • As root. Type below command.
apt-get update
apt-get install zimbra-network-modules-ng
apt-get install zimbra-talk
  • Switch to user zimbra
su – zimbra
  • Zimbra mailbox service must be restarted to changes to take effect. Type
zmmailboxdctl restart

Install/Upgrade zimbra-docs (NETWORK Only)

  • As root, Type below command.
apt-get install zimbra-docs
  • Switch to user zimbra
su – zimbra
  • Zimbra mailbox service must be restarted to changes to take effect. Type
zmmailboxdctl restart


2. Installing zimbra packages with system package upgrades

  • As root, type below command first time so the server sees there is a new zimbra-patch package in the 889 patch repository
apt-get update
  • As root, type below command to update most available packages
apt-get upgrade

OR

  • As root, type below command to update all available packages plus any kernel updates.
apt-get dist-upgrade
  • Switch to user zimbra
su – zimbra
  • ZCS must be restarted to changes to take effect. Type
zmcontrol restart
Jump to: navigation, search