Difference between revisions of "Zimbra Releases/9.0.0/P2"

m
m (Zimbra Collaboration Kepler 9.0.0 Patch 2 GA Release)
Line 11: Line 11:
 
Please refer to the '''[[#Patch Installation|Patch Installation]]''' section for Patch Installation instructions.
 
Please refer to the '''[[#Patch Installation|Patch Installation]]''' section for Patch Installation instructions.
 
As always, you are encouraged to tell us what you think in the Forums or open a support ticket to report issues.
 
As always, you are encouraged to tell us what you think in the Forums or open a support ticket to report issues.
 +
 +
[[#JIRA Summary|JIRA Summary]] lists the tickets fixed in this release.
  
 
= Security Fixes =
 
= Security Fixes =

Revision as of 14:37, 3 June 2020


Zimbra Collaboration Kepler 9.0.0 Patch 2 GA Release

Check out the Security Fixes, What's New, Fixed Issues, and Known Issues for this version of Zimbra Collaboration. Please refer to the Patch Installation section for Patch Installation instructions. As always, you are encouraged to tell us what you think in the Forums or open a support ticket to report issues.

JIRA Summary lists the tickets fixed in this release.

Security Fixes

Summary CVE-ID CVSS Score Zimbra Rating Fix Patch Version
XSS through malicious JS embedded in Mail Message or Calendar Event CVE-2020-11737 3.1 Minor 9.0.0 P2

What's New

ZCS
  • For systems using Single sign-on (SSO), the Modern Web App now redirects to the zimbraWebClientLogoutURL provisioned in LDAP to complete SSO-logout.
ZCO
  • Duplicate calendar events would sometimes appear, with no clear trigger action. ZCO now identifies these unwanted duplicates and automatically removes them.
Modern Web App - Common
  • We’ve introduced a significant change to branding and customization for Zimbra X and the Modern Web Client in Zimbra 9. This change has removed the dependency on product builds by enabling run-time customization deployments.
Modern Web App - Mail
  • When users paste a large inline image in message composer, they now see a spinner while the image paste (upload) is in progress.
  • Pressing Ctrl+Enter now sends the composed message in Modern Web App.
Modern Web App - Calendar
  • Recurring events are now marked differently (with a repeat icon) so that users can differentiate between one time and recurring events.
  • Users can set the From address and name to use when sending messages. Once defined in Settings > Accounts > primary account, From address becomes available, and users can access it in the "From" field dropdown.
  • Users can now choose to respond to individual events in a recurring-event series. This feature gives invitees greater flexibility in managing their invitations.
  • Users can now edit their response to a meeting invite before sending them to the organizer. The options to draft a response appears after they click one of the RSVP options.
  • For users with disabled Calendar feature, the meeting invites now appear as a normal email without RSVP options and a meeting.ics file as an attachment.
  • While creating an event when users click Show Availability, the displayed time is as per the locale chosen. 24-hour time format appears as numbers 1 through 24 format. Earlier, the Show Availability button displayed times as numbers 1 through 12.
  • For Shared Calendars, the users can now send an invitation on behalf of the calendar owner. The response to such invitations goes to the calendar owner.
Modern Web App - Search
  • When a user searches for a word/phrase, the searched word/phrase now appears highlighted in the search results.
Modern Web App - Settings
  • Users now have an option to specify the start and end times when setting an out-of-office response. Earlier users could set only the start and end days.
  • Users can now specify a name while saving a search. They can also rename that saved search.
  • Personas can be created under Settings > Accounts. A Zimbra persona allows you to create an email identity to change a group of settings ("From" address, display name, signatures, and Reply-To address), making it easy to change a "Role" when managing different types of email. Users can configure any account or alias as the "From" address for a Persona. To change the Persona when composing an email, use the dropdown From selector.
Modern Zimlets
  • The functionality of zm-x-zimlet-event-from-email zimlet is moved to the core product. When users select an email, the option to create an event from email is available in the context menu.
  • Date and Additional Signature zimlets are now shipped as default and pre-enabled for users.

Fixed Issues

ZCS
  • zmdialog utility now captures top, ps and netstat output for all servers instead of just the mailbox server.
ZCO
  • Fixed several possible crashes that would occur periodically when modifying events in shared or delegated calendars.
Classic Web App
  • Fixed a date parsing error that made it impossible to search for messages before/after specific dates when the language was set to Hungarian.
  • Zimbra Drive - Fixed a bug that interfered with Drag & Drop operations to upload a file to Drive.
  • Zimbra Drive - Fixed a bug that prevented some attachments (such as pdf files) from saving to Drive when clicking ‘Save to Drive’, with no error being returned to the user.
Modern Web App - Zimbra Connect
  • To get file sharing to work for some users, all quota settings related to their account needed to be removed. This is now fixed.
Modern Web App - Common
  • System folder names are localized in all supported languages. (e.g., Inbox, Spam, Trash, Archive, Sent, Outbox, Contacts, Calendar.)
  • In Settings → General, the storage-usage bar now correctly displays the utilized user quota.
  • When users set German as the browser language, the application translated the word "Tag" to different words throughout the application. After this fix, the word appears as "Tag" consistently across the application.
Modern Web App - Mail
  • Attached calendar event files (.ics) are now shown on emails, unless the message is recognized as an invitation or update. Users are able to download and then import events that they receive as attachments.
  • The first time that an existing draft email was selected after login or a forced reset of the App, it would not be rendered and would just show "undefined" in the preview pane. The cache now loads before rendering, so the email appears as expected.
  • If users try to preview an attachment through search results, the search results no more hide.
  • Fixed the alignment of invitation response controls for mobile browsers.
  • .ics attachments in users' email now appear as a regular attachment for them to download and import in their calendar application.
  • When reading an email containing Cc/Bcc addresses, the Cc/Bcc fields disappeared after 30 seconds. The issue has been fixed now.
Modern Web App - Contacts
  • Fixed an issue where users could not view the GAL folder if administrators disabled users' sharing feature.
Modern Web App - Calendar
  • Users could save an event even when the specified date was invalid. This issue no longer occurs, and the Save button remains disabled if an invalid date is specified.
  • The pulldown control in the scheduler used to set invitees as "Required" or "Optional" has been translated for all supported languages.
  • When users right-clicked an event in Calendar after the pop-over was displayed, the browser’s context menu appeared in place of the event context menu. After this fix, the event’s context menu appears instread of the browser's context menu.
  • When a user sends an invitation from the shared Calendar on behalf of the Sharer, event action buttons were getting displayed on the invitee's response email. The issue has been fixed now. No action buttons are displayed for such emails.
  • Creating multi-day events that span multiple weeks in the Month view by a "drag" action no longer makes the Web App unresponsive.
  • In month view, when users clicked an appointment from the current or future date and closed the details screen using X icon, the older appointments disappeared. This issue no longer occurs.
  • In environments using external authentication, the application redirected the users to a URL ending in /null. They saw a "400 Not Found" error if zimbraWebClientLogoutURL did not have a defined value in the server LDAP. Now the users redirect to the login page and can access the Inbox without editing the URL.
Modern Web App - Settings
  • Users can no longer specify invalid dates when configuring out of office response. The save button remains disabled until valid dates are specified.
Progressive Web App
  • When the user has set the Preview pane to Bottom of the scree, and tried to preview an email attachment, it resulted in an inconsistent user interface and blank email list page. The issue is fixed.
Modern Zimlets
  • Updated the Date Detection Zimlet. It will recognize a broad set of date strings in a message and replace them with a hyperlink to show the user's agenda for that day upon hover. If the user does not have the Calendar feature enabled, this Zimlet will be automatically disabled.
  • Fixed an issue where activating a file zimlet (dropbox, google drive, onedrive) caused the Download All button on messages with multiple attachments, to disappear.
  • Fixed an issue where saving an attachment to dropbox uploaded a broken file

Known Issues

Modern Web App - Settings
  • Accounts and Personas, in Settings ->Account -> "Accounts and Personas" list, are not sorted in alphabetical order of their names.

9.0.0 Patch 2 Packages

The package lineup for this release is:

Package Name                                   Version
zimbra-patch                                -> 9.0.0.1587553609.p2-2
zimbra-common-core-jar                      -> 9.0.0.1587480459-1
zimbra-zco                                  -> 9.0.0.1872.1587454207-1
zimbra-modern-ui                            -> 3.4.0.1587551935-1
zimbra-network-modules-ng                   -> 7.0.1.1588070473-1
zimbra-drive-ng                             -> 4.0.1.1587390189-1
zimbra-drive-modern                         -> 1.0.1.1587390189-1
zimbra-connect                              -> 2.0.1.1587390563-1
zimbra-connect-modern                       -> 1.0.1.1587390563-1
zimbra-zimlet-onedrive                      -> 3.0.1.1586888772-1
zimbra-zimlet-slack                         -> 3.0.1.1586888756-1
zimbra-zimlet-google-drive                  -> 3.0.1.1586888748-1
zimbra-zimlet-dropbox                       -> 3.0.1.1586889023-1
zimbra-zimlet-install-pwa                   -> 3.0.1.1587550967-1
zimbra-zimlet-set-default-client            -> 3.0.0.1587395315-1
zimbra-zimlet-date                          -> 3.2.0.1587130563-1
zimbra-zimlet-additional-signature-setting  -> 3.1.0.1587130467-1
zimbra-modern-zimlets                       -> 3.4.0.1587551935-1

Patch Installation

Please refer to the steps below to install 9.0.0 Patch 2 on Redhat and Ubuntu platforms:

Before Installing the Patch

Before installing the patch, consider the following:

  • Patches are cumulative.
  • A full backup should be performed before any patch is applied. There is no automated roll-back.
  • Zimlet patches can include removing existing Zimlets and redeploying the patched Zimlet.
  • Only files or Zimlets associated with installed packages will be installed from the patch.
  • Switch to zimbra user before using ZCS CLI commands.
  • Important! You cannot revert to the previous ZCS release after you upgrade to the patch.
  • Important Note for ZCS Setup with Local ZCS repository: Customers who have set up local ZCS repository should first update the local repository by following instructions in wiki
  • Please make note that, installing the zimbra-patch package only updates the Zimbra core packages.

Redhat

Installing Zimbra packages with system package upgrades

  • As root, first clear the yum cache and check for updates so the server sees there is a new zimbra-patch package in the patch repository:
yum clean metadata
yum check-update
  • Update available packages:
yum update
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Installing Zimbra packages individually

  • As root, first clear the yum cache and check for updates so the server finds new packages in the patch repository:
yum clean metadata
yum check-update

Install/Upgrade zimbra-patch on mailstore node

  • As root, install the package:
yum install zimbra-patch
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-network-modules-ng

  • As root, install the package:
yum install zimbra-network-modules-ng
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-drive-ng

  • As root, install the package:
yum install zimbra-drive-ng
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-connect

  • As root, install the package:
yum install zimbra-connect
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-onedrive

  • As root, install the package:
yum install zimbra-zimlet-onedrive
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-slack

  • As root, install the package:
yum install zimbra-zimlet-slack
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-google-drive

  • As root, install the package:
yum install zimbra-zimlet-google-drive
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-dropbox

  • As root, install the package:
yum install zimbra-zimlet-dropbox
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Ubuntu

Installing Zimbra packages with system package upgrades

  • As root, check for updates so the server sees there is a new zimbra-patch package in the patch repository:
apt-get update
  • Update available packages:
apt-get upgrade

OR

  • Update all available packages plus any kernel updates:
apt-get dist-upgrade
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Installing Zimbra packages individually

Installing zimbra packages individually

  • As root, first clear the yum cache and check for updates so the server finds new packages in the patch repository:
apt-get update

Install/Upgrade zimbra-patch on mailstore node

  • As root, install the package:
apt-get install zimbra-patch
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-network-modules-ng

  • As root, install the package:
apt-get install zimbra-network-modules-ng
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-drive-ng

  • As root, install the package:
apt-get install zimbra-drive-ng
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-connect

  • As root, install the package:
apt-get install zimbra-connect
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-onedrive

  • As root, install the package:
apt-get install zimbra-zimlet-onedrive
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-slack

  • As root, install the package:
apt-get install zimbra-zimlet-slack
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-google-drive

  • As root, install the package:
apt-get install zimbra-zimlet-google-drive
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-zimlet-dropbox

  • As root, install the package:
apt-get install zimbra-zimlet-dropbox
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

JIRA Summary

JIRA Tickets fixed in 9.0.0 Patch 2

ZCS-8657 Backport ClientInfoRequest to Zimbra 9
ZBUG-1055 zmdiaglog does not capturing top, ps and netstat outputs on a non-mailbox server
ZCS-9156 Missing drive en_us translation file
ZCS-9155 Video issues in IM sessions with multiple attendees
ZCS-9056 Support Zimbra 9 Kepler Patch-1 and Patch-2
ZCS-8911 Add PATCH support in zm-oauth-social proxy
ZCOMT-2020 OLK 2019, OLK 2016,OLK 2013,OLK 2010 crashes after updating meeting time from the shared calendar
ZCOMT-2004 F/B scheduling window continues to show no information even after the connection is recovered.
ZCOMT-2002 O365 crashes while sending a meeting/emails from the mixed profile (ZCO is primary profile user)
ZCOMT-2001 ZCO does not show f/b information for an exchange user who has "Working Elsewhere" meetings.
ZCOMT-1392 Delete the Orphaned PST item
ZCOMT-1309 {OL2016} ZCO crashes during automation run against office 365, OLK 2016(c2r)
ZBUG-1526 After setting French language in Modern Web UI folder name are displayed in English.
ZBUG-1467 Unable to save attachment in Zimbra Drive (Error: Cannot create folder/file with unsupported name)
ZBUG-1466 File sharing is not working in Zimbra Connect.
ZBUG-1462 drag and drop doesn't work with drive v2.
ZBUG-1386 Encrypted email with SMIME attachment are exposed with ActiveSync protocol.
PREAPPS-4802 Kepler-9.0.0-Patch-2/Desktop-May-20/3.4.0 release regression and integration testing
PREAPPS-4778 Update Translations
PREAPPS-4767 Required/Optional pulldown in scheduler widget is not localized
PREAPPS-4735 Update translations
PREAPPS-4734 Icon elements get keyboard focus via Tab; they should not be in the TabIndex
PREAPPS-4725 Selecting all mails moves scroll bar to bottom
PREAPPS-4722 Links in Calendar Events + Email not Properly sanitized allowing XSS
PREAPPS-4720 Handle getway timeout/bad gateway errors properly in the app
PREAPPS-4716 Replace hard coded font sizes with less variables
PREAPPS-4710 CC field disappears automatically while reading a mail after 30-40 secs.
PREAPPS-4703 Log out appends "/null" to the end of the server URL; login at that point results in "Not Found"
PREAPPS-4687 zm-x-zimlet-date not detecting dates
PREAPPS-4686 GAL folder not visible when user's sharing feature is disabled
PREAPPS-4673 Modify Date zimlet to be disabled when Calendar feature is disabled.
PREAPPS-4666 Disable Calendar impact on mail/contacts vertical
PREAPPS-4654 Fix PWA app
PREAPPS-4651 Date and Signature zimlets to be shipped in Zimbra 9 package as default zimlets
PREAPPS-4642 Open attachment preview from search screen hides search result
PREAPPS-4639 Visual indicator for differentiating between one time and recurring events
PREAPPS-4623 Appointments older than particular date disappearing from calendar views and Details screen cannot be viewed
PREAPPS-4614 Regression: User quota showing wrong result in progress bar
PREAPPS-4606 Make Gravatar use client-configurable
PREAPPS-4605 User may pick a default "From" address to use for messages sent from their Primary account
PREAPPS-4602 GraphQL error 'upload not found' shows after attaching .ics file; draft mail in Drafts does not contain .ics file
PREAPPS-4587 Allow user to name a saved-search while creation
PREAPPS-4586 Show start and end time for OOO settings
PREAPPS-4565 Provide users the ability to Create a Persona
PREAPPS-4556 Translation : German translation of "Tags" is cluttered: Sometimes it's called "Tag", sometimes "Stichworte" and sometimes "Etikett"
PREAPPS-4554 In month view, creating 15 days event through drag make UI unresponsive
PREAPPS-4518 Update translations
PREAPPS-4496 Draft mail shows body content "undefined" when viewed first time after login or after client reset
PREAPPS-4486 Event sender (SENT-BY) is shown an invitation header when viewing an invitee's response email
PREAPPS-4474 Bottom Preview Pane | Opening attachment in preview pane breaks UI(Blank mail list)
PREAPPS-4439 Search no longer restricts search results to folder selected from dropdown
PREAPPS-4391 Incorrect dates can be saved in Out of Office
PREAPPS-4291 No visual feedback when large inline image is being pasted/Uploaded into compose window
PREAPPS-4290 Branding | Deploy strategy for Zimbra X
PREAPPS-4212 Move 'New Event' from message functionality to core product
PREAPPS-4063 Highlight search matches when previewing search results
PREAPPS-3977 Right-Click on an event in calendar opens browser's rt-click context menu
PREAPPS-3937 .ics attachments not shown even when message is not an invitation
PREAPPS-3934 Facilitate actions to accept or decline specific instances of recurring events
PREAPPS-3543 Invitation response buttons are misaligned in mobile view when viewing in mail pane
PREAPPS-3504 Creating new folder navigates to Inbox folder view
PREAPPS-3448 "Edit reply before sending" a response to a meeting invite
PREAPPS-3112 Send invitations to events in shared calendar on behalf of calendar owner
PREAPPS-2894 Localize time display on Show Availability dialog and Calendar views
PREAPPS-2732 Implement CTRL+Enter shortcut for Send mail action
PREAPPS-2277 System Folder Name Translation - Zimbra X UI
Jump to: navigation, search