Hello Zimbra Friends, Customers & Partners,
Patch 13 is here for the Zimbra 8.6.0 GA release, and it includes fixes as listed in the release notes.
Security Fixes
Information about security fixes, security response policy and vulnerability rating classification is listed below. See the Zimbra Security Response Policy and the Zimbra Vulnerability Rating Classification information for details.
| Bug# | Summary | CVE-ID | CVSS Score | Zimbra Rating | Fix Release or Patch Version |
|---|---|---|---|---|---|
| 109129 | Bug 109129 – XXE [CWE-611] | CVE-2019-9670 | 6.4 | Major | 8.6.0 Patch 13 |
Patch Installation
Download the patch for Network Edition and Open Source Edition.
Please refer to the release notes for 8.6.0 Patch 13 installation.
Note: This patch should be installed only on all mailbox nodes running in your environment.
Thank you,
Your Zimbra Team
Thank you for this patch for version 8.6.0!
Hola TomBa no logro ubicar el parche en la pagina solo encuentro el 14 puedes enviarme porfavor en caso lo tengas mi correo es: jc.cisnerosp@gmail.com
Hi – the most current patch is always listed on the website. We don’t provide older patches to ensure everyone has the most secure patch available. Please let me know if you need any additional help. Thanks!