drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in Zarafa
Name: |
Mehrere Probleme in Zarafa |
|
ID: |
FEDORA-2014-1883 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 19 |
|
Datum: |
So, 16. Februar 2014, 09:53 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0037
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0079 |
|
Applikationen: |
Zarafa |
|
Originalnachricht |
Name : zarafa Product : Fedora 19 Version : 7.1.8 Release : 1.fc19 URL : http://www.zarafa.com/ Summary : Open Source Edition of the Zarafa Collaboration Platform Description : The Zarafa Collaboration Platform is a Microsoft Exchange replacement. The Open Source Collaboration provides an integration with your existing Linux mail server, native mobile phone support by ActiveSync compatibility and a webaccess with 'Look & Feel' similar to Outlook using Ajax. Including an IMAP and a POP3 gateway as well as an iCal/CalDAV gateway, the Zarafa Open Source Collaboration can combine the usability with the stability and the flexibility of a Linux server.
The proven Zarafa groupware solution is using MAPI objects, provides a MAPI client library as well as programming interfaces for C++, PHP and Python. The other Zarafa related packages need to be installed to gain all features and benefits of the Zarafa Collaboration Platform (ZCP).
------------------------------------------------------------------------------- - Update Information:
Zarafa Collaboration Platform 7.1.8 final [43801]
=================================================
Backend
-------
* ZCP-7137: Several comments in default config files are incorrect
* ZCP-11974: ARM build compatibility with GCC > 4.4.4 patch
* ZCP-11973: Enhance logging of zarafa-dagent to display the same amount of information as zarafa-spooler
* ZCP-11972: Enhance IMAP messages log level prios
* ZCP-11746: ICalToMAPI.cpp missing break in switch icalerrno
* ZCP-11504: python-mapi doc has outdated info on charsets
* ZCP-11924: userscripts in Debian/Ubuntu do not include /etc/default/zarafa
* ZCP-11923: Double colons in Disposition-Notification-To: crash dagent
* ZCP-11922: support reading of S/MIME messages
* ZCP-11921: Priority is not set in received mail
* ZCP-11918: Make zarafa-stats faster on heavy loaded system
* ZCP-11890: Segfault Zarafa-Server 7.1.8
* ZCP-11883: zarafa-fsck crash when no first/lastname present, but suffix present which is longer than fullname!
* ZCP-11881: Add public restore bash script
* ZCP-11867: read flag not honored when specific header is used when delivering with dagent
* ZCP-10508: reference in the server.cfg to the example configs is incorrect
* ZCP-10777: No error given when hooking an orphan to another server
* ZCP-11135: Make the output of zarafa-stats machine-readable
* ZCP-11186: Bricklevel backup should not refer to archive server or state
* ZCP-11287: unclear error messages if multiserver setup is incorrect
* ZCP-11536: zarafa-stats --users cuts off the year in date
* ZCP-11538: Licensed crash during restart with 7.1.4
* ZCP-11619: Check if zarafa-ads plugin/schemas are utf8 aware
* ZCP-11696: Create coredump_enabled feature in all services (other than zarafa-server) as well
* ZCP-11758: message-in-message has empty filename parameter in content-type header
* ZCP-11790: Make uuencoded plugin for the dagent
* ZCP-11799: Dagent plugin to censor specific words in emails
* ZCP-11802: Remove C-style macro DEFINEMAPIPTR from common/mapi_ptr/mapi_object_ptr.h
* ZCP-11819: zarafa-search crashes when the server is shutting down
* ZCP-11829: Spelling errors in log formatting
* ZCP-11832: zarafa-server segfaults on login by script run on zarafa http port
* ZCP-11851: Broken rpm packages when upgrading from 7.0 to 7.1
* ZCP-11855: zarafa-gateway is unable to create RTF text stream
* ZCP-11807: gateway segfault on pop3 access 7.1.6/7.1.7
* ZCP-11535: zarafa-search is unable to index specific pdf files
Archiver
--------
* ZCP-11059: Zarafa-archiver throws error with empty premade database
* ZCP-11808: zarafa-admin --unhook --type archive does not work. ------------------------------------------------------------------------------- - ChangeLog:
* Thu Jan 30 2014 Robert Scheck <robert@fedoraproject.org> 7.1.8-1 - Upgrade to 7.1.8 (#1056767, #1059903) * Sun Dec 8 2013 Robert Scheck <robert@fedoraproject.org> 7.1.7-1 - Upgrade to 7.1.7 (#1008068) - Added dependency from gateway and spooler to python-MAPI - Added requirements to virtual libvmime ABI/API provides * Mon Aug 5 2013 Robert Scheck <robert@fedoraproject.org> 7.1.5-1 - Upgrade to 7.1.5 (#747241, #863498, #926039, #946900) - Added configuration compatibility for Apache 2.2 and 2.4 * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 7.1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Sat Jul 27 2013 Petr Machata <pmachata@redhat.com> - 7.1.4-2 - Rebuild for boost 1.54.0 * Sat May 25 2013 Rex Dieter <rdieter@fedoraproject.org> 7.1.4-2 - rebuild (libical) * Sun Mar 24 2013 Robert Scheck <robert@fedoraproject.org> 7.1.4-1 - Upgrade to 7.1.4 * Fri Mar 22 2013 Remi Collet <rcollet@redhat.com> 7.0.13-2 - rebuild for http://fedoraproject.org/wiki/Features/Php55 ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1056767 - CVE-2014-0037 zarafa: unauthenticated denial of service flaw https://bugzilla.redhat.com/show_bug.cgi?id=1056767 [ 2 ] Bug #1059903 - CVE-2014-0079 zarafa: unauthenticated denial of service flaw https://bugzilla.redhat.com/show_bug.cgi?id=1059903 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update zarafa' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|