Zimbra 8.8.15 “James Prescott Joule” Patch 8

Hello Zimbra Friends, Customers & Partners,

Patch 8 is here for the Zimbra 8.8.15 “James Prescott Joule” GA release, and it includes Security Fixes, What’s New, Fixed Issues and Known Issues as listed in the release notes.

Zimbra 8.8.15 is now fully supported on UBUNTU18 (GA).
Download the latest UBUNTU-18 binaries from https://www.zimbra.com/downloads.

Security Fixes

Bug# Summary CVE-ID CVSS Score Zimbra Rating Fix Patch Version
N/A Earlier, any authenticated user could view a GAL contact from another domain on the same Zimbra installation. After this fix, AutoCompleteGal request does not allow access to GalSync accounts of other domains. CVE-2020-10194 8.8.15 P8

Patch Installation

For 8.8.15 Patches, you don’t need to download any patch builds. 8.8.15 Patch packages can be installed using Linux package management commands. Please refer to the release notes for Zimbra 8.8.15 Patch 8 installation on Red Hat and Ubuntu platforms.

Note: Installing a zimbra-patch package only updates the Zimbra core packages.

Thank you,
Your Zimbra Team

3 Responses to Zimbra 8.8.15 “James Prescott Joule” Patch 8

  1. Mathayo Josephat April 4, 2020 at 3:47 PM #

    Hi Team in next release kindly can you incorporate a sending rate limit to the paid zimbra so that we as Admin we can set it in admin console instead of using third party. This will improve from being compromised and keep zimbra rolling

    I am Mathayo Kulwa from Tanzania A Zimbra System Admin
    I Like Centos & Ubuntu

    Thanks

    • Gayle Billat April 14, 2020 at 3:49 PM #

      Hi Mathayo – Please submit a request for enhancement for that functionality. Thanks!

  2. fce February 26, 2021 at 10:24 AM #

    It’s great that Zimbra still developes.

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures