Zimbra Releases/9.0.0/P5


Zimbra Collaboration Kepler 9.0.0 Patch 5 GA Release

Check out the Security Fixes, What's New, Fixed Issues, and Known Issues for this version of Zimbra Collaboration. Please refer to the Patch Installation section for Patch Installation instructions. As always, you are encouraged to tell us what you think in the Forums or open a support ticket to report issues.

Security Fixes

Summary CVE-ID CVSS Score Zimbra Rating Fix Patch Version
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CVE-2019-1010091 6.1 Medium 9.0.0 P5
Updated third-party mem component due to vulnerability WS-2018-0236. 5.5 Medium 9.0.0 P5

What's New

Modern Web App

General

  • In Settings > Sharing, users can view the folders shared with them and by them.
  • The Modern Web App can automatically choose a persona for users when responding to an email. This setting is available to users In Settings > Accounts > Persona.
  • Localization in all supported languages has been added for the following Zimlets:
    • Restore Contacts
    • Additional Signatures


Mail

  • Users can choose plaintext as the default setting for viewing and composing messages through Settings > Viewing Email and Settings > Writing Email.

NOTE: If users have enabled plaintext for composing email as default and respond to an HTML email, then the default setting is overridden and the response is sent as HTML.

  • If users enable user-session-management zimlet, a new section Synced devices and Apps appears under Settings > Security and Activity. This section helps users to better manage the syncing of data to mobile devices.
  • Dumpster support has been provided for Mail items that were permanently deleted; they may now be recovered from the Dumpster when the feature has been enabled by an administrator.


Calendar

  • When creating an event, users can now search and choose a location for this event.


Briefcase

  • Using the search bar in the Modern web app, users can now search for items in their briefcase.
  • In Briefcase, Users can sort the files by the modified date or by name.
  • In Briefcase, Users can preview the files. In case the format of the file is not supported, the message would be given to the user about it.

Fixed Issues

Zimbra Collaboration

  • User will not be able to login with locked account.
  • Users could not configure their web clients with email accounts of size more than 4GB. After this fix, users can now sync large mailboxes without encountering issues.
  • Fixed issue wherein Content-Transfer-Encoding 8bit caused corruption of S/MIME signature.
  • Users can delete a member from the contact group after the upgrade to ZCS 8.7.1


Modern Web App

General

  • System folder names now match those in the Classic Web App in Italian, Spanish, and Indonesian languages.
  • Fixed an error that occurred when using the Export Contacts action.


Mail

  • Improved identification of URLs in messages now allows all characters, including non-Latin characters, when displaying hyperlinks in email previews.


Calendar

  • "Not Found" error no longer appears after users click "Invitees" link when creating an event.


Briefcase

  • Earlier, the web app became non-responsive when users searched for files in Briefcase. After this fix, the search works as expected and does not freeze.
  • A search did not display any results when using Safari and MS Edge browsers for narrow list. The issue is fixed now.

Zimbra Connector for Outlook

  • Users can now forward an invitation email to another user without experiencing PERM_DENIEDerrors.
  • Users now no longer receive a synchronization General Failure Failed to create Outlook signature when the signature name contains any of the following reserved characters: < (less than), > (greater than), : (colon), " (double quote), / (forward slash), \ (backslash), | (vertical bar or pipe), ? (question mark), or * (asterisk).


NG Modules

  • It is no longer necessary to specify check_digests true when fix_incorrect_compressed_digests is also true.
  • Fixed a bug that caused the restore on new account to fail when the assigned COS was deleted
  • RestoreBlob operations now require that HSM module is running. The application now returns an error if users attempt to restore blobs while HSM service is not running.
  • Fixed a bug that caused the domain to be restored when running dorestoreonnewaccount to recover an account from a deleted domain.
  • Fixed a bug that prevented missing digests to be reported in backup coherency check
  • Restore log lines now specify the primary address of the restored item’s account
  • Parameters and attribute names are now case-insensitive to improve CLI usability
  • When manually scheduling HSM operation by clicking the Apply HSM Policy Now the "window" now displays the HSM monitor command.
  • Information collected by Zimbra as part of the license check now includes non-identifiable users' information and an improved disclaimer displayed to users.


Zimbra Drive

  • Drive upload errors are now returned to the web interface instead of being just logged in the mailbox.log.
  • Drive is now available in German when using the modern interface
  • The Drive move menu entry has been removed for "shared with me" items
  • Improved versioning description-The versioning description is now independent from the retention time and the number of versions to keep
  • Versions' Upload and Purge buttons disabled in view only shares
  • Fixed a bug that prevented the info button to be clickable in search views, these comprehend the default views (starred, shared by me, shared with me and Trash views).
  • Made Drive panel similar between classic and modern
  • Translation of Docs related menu entries under the drive tab is now complete.
  • Fixed an issue that mangled the drive items' filenames (containing Cyrillic characters) on download.
  • Implemented pdf file view - Pdf files can now be opend using the modern interface just like using the classic one.
  • Improved logging for doImportBriefcase operations
    • User details on each line with exceptions
    • The count of accounts is listed
    • A final report has been added
    • Missing account is no longer a blocking condition


Zimbra Connect

  • Translations have been extended and now all elements for audio/video meetings are translated
  • The end meeting message does not trigger a notification anymore.
  • Users' device settings now properly appear for all supported languages.
  • Improved the user details section of one-on-one conversations where users' name was truncated.
  • The notifications of read messages now shows who has read the messages in groups,spaces and instant meetings
  • Users can no longer send messages composed entirely of blank spaces thereby discouraging spamming of conversation channels.
  • The icon used to send instant messages switches from an airplane to a clip depending if there's text inserted in the text box.
  • The avatar icon has been added to the Add Participants view of the instant meetings.
  • Improved instant message length limit management. Now it is impossible to insert more than 4096 character in an instant message.
  • Scrollbars are now available on the interface for users to view all the elements in a viewport
  • Made the emoji selector more harmonious.


Known Issues

NG Modules

  • Fixed an issue that would not add storeType CUSTOM_S3 to custom buckets configuration when upgrading to the new bucket management if a custom_s3 bucket and at least one swift or openio volume is present.



Patch Installation

Please refer to the steps below to install 9.0.0 Patch 5 on Redhat and Ubuntu platforms:

Before Installing the Patch

Before installing the patch, consider the following:

  • Patches are cumulative.
  • A full backup should be performed before any patch is applied. There is no automated roll-back.
  • Zimlet patches can include removing existing Zimlets and redeploying the patched Zimlet.
  • Only files or Zimlets associated with installed packages will be installed from the patch.
  • Switch to zimbra user before using ZCS CLI commands.
  • Important! You cannot revert to the previous ZCS release after you upgrade to the patch.
  • Important Note for ZCS Setup with Local ZCS repository: Customers who have set up local ZCS repository should first update the local repository by following instructions in wiki
  • Please make note that, installing the zimbra-patch package only updates the Zimbra core packages.

9.0.0 Patch 5 Packages

The package lineup for this release is:


Package Name                                       Version
zimbra-patch                               ->     9.0.0.1595222364.p5-2
zimbra-common-core-jar                     ->     9.0.0.1594781696-1
zimbra-openldap-server                     ->     2.4.49-1zimbra8.8b2
zimbra-ldap-components                     ->     1.0.3-1zimbra8.8b1
zimbra-mbox-webclient-war                  ->     9.0.0.1594236794-1
zimbra-mbox-admin-console-war              ->     9.0.0.1594236242-1
zimbra-common-core-libs                    ->     9.0.0.1591936175-1
zimbra-zco                                 ->     9.0.0.1880.1594633190-1
zimbra-modern-ui                           ->     3.10.1.1594985137-1
zimbra-zimlet-install-pwa                  ->     3.0.2.1589372428-1
zimbra-zimlet-set-default-client           ->     3.0.1.1589372397-1
zimbra-zimlet-date                         ->     3.2.1.1589372379-1
zimbra-zimlet-additional-signature-setting ->     3.2.0.1593001034-1
zimbra-modern-zimlets                      ->     3.10.1.1594985137-1
zimbra-zimlet-restore-contacts             ->     3.1.0.1592400205-1
zimbra-network-modules-ng                  ->     7.0.4.1594306950-1
zimbra-drive-ng                            ->     4.0.4.1594308606-1
zimbra-drive-modern                        ->     1.0.4.1594308606-1
zimbra-connect                             ->     2.0.4.1594308979-1
zimbra-connect-modern                      ->     1.0.4.1594308979-1
zimbra-zimlet-onedrive                     ->     3.0.1.1586888772-1
zimbra-zimlet-slack                        ->     3.0.1.1586888756-1
zimbra-zimlet-google-drive                 ->     3.0.1.1586888748-1
zimbra-zimlet-dropbox                      ->     3.0.1.1586889023-1
zimbra-zimlet-zoom                         ->     4.0.2.1589492807-1
zimbra-zimlet-classic-unsupportedbrowser   ->     1.0.0.1591045240-1
zimbra-docs                                ->     4.0.2.1592415625-1
zimbra-docs-modern                         ->     1.0.2.1592415625-1
zimbra-chat                                ->     4.0.1.1594306412-1

Redhat

Installing Zimbra packages with system package upgrades

  • As root, first clear the yum cache and check for updates so the server sees there is a new zimbra-patch package in the patch repository:
yum clean metadata
yum check-update
  • Then ask yum to update available packages:
yum update
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Installing Zimbra packages individually

Install/Upgrade zimbra-proxy-components on Proxy node for FOSS and NETWORK

  • As root, first clear the yum cache and check for updates so the server sees all updated packages in the patch repository:
yum clean metadata
yum check-update
  • Then install the package:
yum install zimbra-proxy-components
  • Restart proxy as zimbra user:
su - zimbra
zmproxyctl restart

Install/Upgrade zimbra-proxy-patch on Proxy node for FOSS and NETWORK

  • As root, install the package:
yum install zimbra-proxy-patch
  • Restart proxy as zimbra user:
su - zimbra
zmproxyctl restart
zmmemcachedctl restart

Install/Upgrade zimbra-mta-components on MTA node for FOSS and NETWORK

  • As root, first clear the yum cache and check for updates so the server sees all updated packages in the patch repository:
yum clean metadata
yum check-update
  • Then install the package:
yum install zimbra-mta-components
  • Restart amavisd as zimbra user:
su - zimbra
zmamavisdctl restart

Install/Upgrade zimbra-mta-patch on MTA node for FOSS and NETWORK

  • As root, install the package:
yum install zimbra-mta-patch
  • Restart amavisd as zimbra user:
su - zimbra
zmamavisdctl restart

Install/Upgrade zimbra-patch on mailstore node for FOSS and NETWORK

  • As root, install the package:
yum install zimbra-patch
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-chat for FOSS

  • As root, install the package:
yum install zimbra-chat
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Uninstall zimbra-talk (NETWORK Only)

Starting Zimbra 8.8.15 GA, zimbra-connect replaces zimbra-talk hence it is important to remove zimbra-talk before installing zimbra-connect.

  • As root, uninstall the package:
yum remove zimbra-talk

Install/Upgrade zimbra-network-modules-ng, zimbra-connect and zimbra-zimlet-auth (NETWORK Only)

  • As root, first clear the yum cache and check for updates so the server sees all updated packages in the patch repository:
yum clean metadata
yum check-update
  • Then install the packages:
yum install zimbra-network-modules-ng
yum install zimbra-connect
yum install zimbra-zimlet-auth
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Install/Upgrade zimbra-docs (NETWORK Only)

  • As root, install the package:
yum install zimbra-docs
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Install/Upgrade zimbra-drive-ng (NETWORK Only)

  • As root, install the package:
yum install zimbra-drive-ng
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Upgrade OpenLDAP on LDAP node for FOSS and NETWORK

  • As root, install the package:
yum install zimbra-ldap-components
  • Restart ldap as zimbra user:
su - zimbra
ldap restart

Ubuntu

Installing zimbra packages with system package upgrades

  • As root, check for updates so the server sees there is a new zimbra-patch package in the patch repository:
apt-get update
  • Then update available packages:
apt-get upgrade

OR

  • Update all available packages plus any kernel updates:
apt-get dist-upgrade
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Installing zimbra packages individually

Install/Upgrade zimbra-proxy-components on Proxy node for FOSS and NETWORK

  • As root, install package
apt-get install zimbra-proxy-components
  • Restart proxy as zimbra user:
su - zimbra
zmproxyctl restart

Install/Upgrade zimbra-proxy-patch on Proxy node for FOSS and NETWORK

  • As root, install package
apt-get install zimbra-proxy-patch
  • Restart proxy as zimbra user:
su - zimbra
zmproxyctl restart
zmmemcachedctl restart

Ubuntu 18 zimbra-proxy-patch version

zimbra-proxy-patch        ->  8.8.12.1554984827.p3-1

The installation of this patch is mandatory for the proxy to function on Ubuntu 18 servers.

Install/Upgrade zimbra-mta-components on MTA node for FOSS and NETWORK

  • As root, install package
apt-get install zimbra-mta-components
  • Restart amavisd as zimbra user:
su - zimbra
zmamavisdctl restart

Install/Upgrade zimbra-mta-patch on MTA node for FOSS and NETWORK

  • As root, install package
apt-get install zimbra-mta-patch
  • Restart amavisd as zimbra user:
su - zimbra
zmamavisdctl restart

Install/Upgrade zimbra-patch on mailstore node for FOSS and NETWORK

  • As root, check for updates and install package:
apt-get update
apt-get install zimbra-patch
  • Restart ZCS as zimbra user:
su - zimbra
zmcontrol restart

Install/Upgrade zimbra-chat for FOSS

  • As root, install package:
apt-get install zimbra-chat
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Uninstall zimbra-talk (NETWORK Only)

Starting Zimbra 8.8.15 GA, zimbra-connect replaces zimbra-talk hence it is important to remove zimbra-talk before installing zimbra-connect.

  • As root, uninstall the package:
apt-get remove zimbra-talk

Install/Upgrade zimbra-network-modules-ng, zimbra-connect and zimbra-zimlet-auth (NETWORK Only)

  • As root, check for updates and install packages:
apt-get update
apt-get install zimbra-network-modules-ng
apt-get install zimbra-connect
apt-get install zimbra-zimlet-auth
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Install/Upgrade zimbra-docs (NETWORK Only)

  • As root, install package:
apt-get install zimbra-docs
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Install/Upgrade zimbra-drive-ng (NETWORK Only)

  • As root, install package:
apt-get install zimbra-drive-ng
  • Restart Zimbra mailbox service as zimbra user:
su - zimbra
zmmailboxdctl restart

Upgrade OpenLDAP on LDAP node for FOSS and NETWORK

  • As root, install the package:
apt-get install zimbra-ldap-components
  • Restart ldap as zimbra user:
su - zimbra
ldap restart

Jira Summary

Jira Tickets fixed in 9.0.0 Patch 5

ZCS-9587 Updated translations for new graphics
ZCS-9586 Removed end meeting notification
ZCS-9584 Completed translations of user’s settings
ZCS-9583 Improved user details section
ZCS-9582 Improved notifications of read messages
ZCS-9581 Added empty message handling
ZCS-9580 Improved send message icon
ZCS-9579 Improved add participants view
ZCS-9576 Improved instant message length limit management
ZCS-9575 Added scrollbars to instant messaging elements
ZCS-9574 Provide relative path for websocket and v7 API
ZCS-9573 Graphical improvements for emoji selector
ZCS-9562 NG HSM | Check_digests implicit for fix_incorrect_compressed_digests
ZCS-9560 NG Backup | Restore account with deleted COS fixed
ZCS-9559 NG Backup | HSM service mandatory for restore operation
ZCS-9558 Ng Backup | RestoreOnNewAccount domain creation fix
ZCS-9557 NG Backup | Missing digests reported in backup coherency check
ZCS-9556 NG Backup | Itemrestore logs improvements
ZCS-9554 Kepler 9.0.0 Patch-5 Packages details
ZCS-9553 NG Drive | Improved Drive error handling
ZCS-9551 NG Drive | Added drive German Translation
ZCS-9548 NG Drive | Removed meaningless drive menu entry
ZCS-9546 NG Drive | Improved versioning description
ZCS-9544 NG Drive | Versions' Upload and Purge buttons disabled in view only shares
ZCS-9542 NG Drive | Info button in Drive search views fixed
ZCS-9541 NG Drive | Made Drive panel similar between classic and modern
ZCS-9534 NG Drive | Completed translation for Drive’s docs menu entries
ZCS-9533 NG Drive | Fixed drive cyrillic fonts handling on download
ZCS-9532 NG Drive | Implemented pdf file view
ZCS-9531 NG Drive | Several minor drive import improvements
ZCS-9528 No more false unknown logins in admin panel reported
ZCS-9527 Made CLI parameters and attribute names case-insensitive
ZCS-9484 Login Page Logo should be able to customised using zimbraSkinLogoLoginBanner
ZCS-9159 Add "block common password" rule to AWC
ZCS-9048 NG Drive | Attaching a file to an email via drive modal does not paginate file list
ZCS-8986 Drive | Connect Sent Files are not present in Drive NG even if Connect is enabled for user
ZCOMT-2074 checkmarx: fix the 'Process Control' reported errors
ZCOMT-2019 "Soap Fault. Permission denied error while forwarding meeting invite from ZCO
ZCOMT-1977 Sync fails if a signature is named with characters not valid for Windows filenames
ZBUG-1686 Clicking on "Apply HSM Policy Now" button does not display the zxsuite HSM monitor command anymore.
ZBUG-1668 NG Admin: Monthly Report showing normal accounts as admin accounts
ZBUG-1642 Modern UI, unable to open pdf files that are in Drive
ZBUG-1604 Folder Name difference between Spam and Trash on Modern UI and Classic UI in Italian Language
ZBUG-1595 Modern UI is not rendering a newsletter received from AWS - CPU spikes
ZBUG-1578 Contact groups with "/" in name and imported via PST migration wizard are not visible in Modern Web App
ZBUG-1572 samlreceiver returns authtoken even when zimbraAccountStatus is not active
ZBUG-1522 Error while exporting contacts
ZBUG-1318 External account failure
ZBUG-1209 ZCO SendAs Problems, emails not getting inproper sent folder
ZBUG-1035 Content-Transfer-Encoding 8bit causes breakage of S/MIME signature
ZBUG-321 Users cannot delete a member from the contact group after the upgrade to ZCS 8.7.1
PREAPPS-5148 Apps get freeze on searching briefcase file on zimbra9 server ( Modern UI)
PREAPPS-5109 Kepler-9.0.0-Patch-5, Desktop-Aug-20 and 3.10.0 release regression and integration testing
PREAPPS-5103 Regression: Vertical header overwrites navigation headings panel on Mobile
PREAPPS-5089 Missing tinymce translations and security issue with tinymce
PREAPPS-5087 Add translation notes to guide external translators
PREAPPS-5082 Fix security issue reported in zm-api-js-client
PREAPPS-5066 Briefcase doesnt show data in safari and edge for narrow list
PREAPPS-5064 About should say Modern UI instead of Zimbra X
PREAPPS-5063 "Not Found" error when click to Invitees link from new event page (Zimbra 9 Modern Client)
PREAPPS-5056 Enable sharing tab in settings when sharing feature is enabled
PREAPPS-5033 Export Tags related GraphQL queries via Shims
PREAPPS-5023 Share Briefcase folder dialog is missing the dialog heading
PREAPPS-4907 Plaintext email support - Part 2
PREAPPS-4846 Connected Devices
PREAPPS-4829 View all shared folders
PREAPPS-4823 Briefcase | Search files
PREAPPS-4822 Briefcase | Sorting
PREAPPS-4821 Briefcase | File Preview
PREAPPS-4779 Unable to export Contacts; nothing happens when selecting output option and clicking 'Export Now'
PREAPPS-4568 User may edit usage rules for a persona on Persona edit form
PREAPPS-4357 URLs containing Anchors (#) or non-latin chars are not properly identified as links
PREAPPS-3826 Implement Dumpster
PREAPPS-2897 Update Translations: Additional Signatures Zimlet should be translatable to other languages
PREAPPS-2575 Update Translations: Restore Contacts Zimlet should be translatable to other languages
PREAPPS-1121 Location Chooser
Jump to: navigation, search