Update: kolab-webadmin 3.2.12

We’re pleased to announce an update for the kolab-webadmin packages, version 3.2.12.

This update is a bugfix release for Kolab Enterprise 14, available for CentOS 6, CentOS 7, Debian 7, Debian 8, Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7, and Kolab 16, available for CentOS 7, Debian 8, Debian 9, Red Hat Enterprise Linux 7 and Ubuntu 16.04.

The following issues are fixed;

  • T67329: Support attribute=value search
  • T57633: Add possibility to clone object types
  • Fix PHP 7.1 compatibility issues
  • T2388: Fix ldaps:// connections
  • Fix hiding Add Shared Folder and Add Organizational Unit menu when user has no access to it
  • T1326: Fix bug where resources name field could become disabled after object type modification
  • Add –dry-run argument to purge-deleted-domains
  • Fix scoring more narrow, subtle differences between user types
  • T1232: Allow login with password containing < character
  • T1109: Fix bug where hitting Enter in autocompletion list would close ACL dialog
  • Fix bug in creating DN string from domain name for %(base_dn)s resolving

Update: roundcubemail-skin-enterprise 0.3.8

We’re pleased to announce an update for the roundcubemail-skin-enterprise packages, version 0.3.8.

This update is a bugfix release for Kolab Enterprise 14, available for CentOS 6, CentOS 7, Debian 7, Debian 8, Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7, and Kolab 16, available for CentOS 7, Debian 8, Debian 9, Red Hat Enterprise Linux 7 and Ubuntu 16.04.

The following issues are fixed;

  • Ensure compatibility with changes to the Roundcube stock skin.

Update: roundcubemail 1.1.12

We’re pleased to announce an update is available for the roundcubemail packages, version 1.1.12

This is a security and bugfix release for Kolab Enterprise 14, available for CentOS 6, CentOS 7, Debian 7, Debian 8, Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.

The following issues are fixed;

  • Don’t ignore (global) userlogins/sendmail logs in per_user_logging mode
  • Fix security issue in remote content blocking on HTML image and style tags (#6178)
  • Fix check_request() bypass in places using get_uids() [CVE-2018-9846] (#6238)
  • Fix possible IMAP command injection vulnerability [CVE-2018-9846] (#6229)
  • Fix file disclosure vulnerability caused by insufficient input validation (#6026)

Update: roundcubemail-plugins-kolab 3.2.20

We’re pleased to announce an update for the roundcubemail-plugins-kolab packages, version 3.2.20.

This update is a bugfix release for Kolab Enterprise 14, available for CentOS 6, CentOS 7, Debian 7, Debian 8, Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.

The following bugs are fixed;

  • T31915: Fix delegation context on RSVP action in the Calendar UI
  • T43830: Workaround libkolabxml error on the invalid Etc/UTC timezone
  • Load missing ‘showmore’ label localization
  • Disable tagging functionality in contextmenu for Roundcube < 1.4…
  • Support UIDs up to 512 characters
  • Add support for prefix search in kolab cache
  • T2561: Fix recognizing event organizer on event move/delete
  • Don’t ignore (global) userlogins/sendmail logging in per_user_logging mode
  • T2504: Fix DTSTAMP in iTip replies
  • Move more common methods used by tasklist and calendar to libcalendaring
  • Fix recognizing an organizer in event delete confirmation dialog
  • Fix regression where declining an event from Calendar would send CANCEL instead…
  • T31444: Add ability to specify a server vs. client kolab_files_url
  • Fix bug where it wasn’t possible to change all-day event e.g. from one day to…
  • T29113: Fix saving BYPOS recurrence with a number preceding a day name
  • T1357: Fix misleading warning when editing/deleting a shared event