Guarding Against XSS: Security Update This Patch Release is for the following editions Daffodil 10.0.4 9.0.0 Kelper Patch 36 8.8.15 Joule Patch 43 This notification is published ahead of the actual release to enable administrators to schedule time to install the patch. The patch has been released on Wednesday (13 Sept). The steps for installing […]
Author Archive | Karyn Tan
Patch for Zimbra Daffodil 10.0.2, 9.0.0 Patch-34 & 8.8.15 Patch-41
Security bug fixes and OpenSSL upgrade Zimbra OpenSSL now runs in FIPS-compliant mode by default. This increases security which requires no additional action on your part. However, should you run into issues, you can find steps to disable OpenSSL FIPS in the release notes. This patch upgrades OpenSSL to major version 3.0.x. To safeguard your […]
Security Update for Zimbra Collaboration Suite Version 8.8.15 CVE-2023-37580
An XSS vulnerability in Zimbra Collaboration Suite Version 8.8.15 that could potentially impact the confidentiality and integrity of your data has surfaced. We take this matter very seriously and have already taken immediate action to address the issue. Important: This vulnerability has been actively exploited, making it imperative to take immediate action. We strongly recommend […]
Patch for Zimbra Daffodil 10.0.1, 9.0.0 Patch-33 & 8.8.15 Patch-40
Cases of Compromised Servers are still a concern for 9.0.0 and 8.8.15 servers It has come to our attention that compromised systems are still prevalent and have not been adequately cleaned. Proactive security measures is essential for the long-term success of your organization. To safeguard your system, we recommend you always upgrade to the latest […]
NEW Zimbra Patches: 9.0.0 Patch 32 + 8.8.15 Patch 39
Hello Zimbra Friends, Customers & Partners, Increase Cases of Compromised Servers We have noticed an increase in cases where customer servers have been compromised. To help you safeguard your system, we recommend you always upgrade to the latest patch and regularly refer to our blog and the Zimbra Security Center for steps to ensure your system is safe. […]
Zimbra Patches: 9.0.0 Patch 31 + 8.8.15 Patch 38
Hello Zimbra Friends, Customers & Partners, The ClamAV package has been upgraded to version 0.105.2 to fix multiple vulnerabilities. Zimbra 9.0.0 Kepler Patch 31 and 8.8.15 James Prescott Joule Patch 38 As part of this patch, we are releasing the updated ClamAV and its related packages which are installed only on MTA nodes. Since this […]