Navigation

Update … Hotfix Available 5 Feb for Zero-day Exploit Vulnerability in Zimbra 8.8.15

By on February 8, 2022 in Product News, Community

Hello Zimbra Friends, Customers & Partners, This is an update to our statement Friday, 4 February … A new Zero-day exploit has been identified that affects Zimbra 8.8.15. Zimbra 8.8.15p30 has been updated and is now available. This critical issue affects all versions of Zimbra 8.8.15, and you are strongly encouraged to update to the […]

Continue Reading

Hotfix Available 5 Feb for Zero-day Exploit Vulnerability in Zimbra 8.8.15

By on February 4, 2022 in Product News, Community, Security & Privacy

Hello Zimbra Friends, Customers & Partners, A new Zero-day exploit has been identified that affects Zimbra 8.8.15. Since learning of the reported vulnerability, Zimbra Engineering has verified the issue and produced a hotfix (for 8.8.15 p30). The hotfix will be available to Zimbra customers through Zimbra Support. A durable fix for the issue is undergoing […]

Continue Reading

Zimbra Patches: 9.0.0 Patch 23 + 8.8.15 Patch 30

By on January 24, 2022 in Product News, Product Updates, Zimbra Server

Hello Zimbra Friends, Customers & Partners, Zimbra 9.0.0 “Kepler” Patch 23 and 8.8.15 “James Prescott Joule” Patch 30 are here. Log4j Zero-Day Exploit Vulnerability After intensive review and testing, Zimbra Development determined that the zero-day exploit vulnerability for Log4j (CVE-2021-44228) does not affect the currently supported Zimbra versions (9.0.0 & 8.8.15). Zimbra currently uses Log4j […]

Continue Reading

Zimbra Patches: 9.0.0 Patch 22 + 8.8.15 Patch 29

By on December 15, 2021 in Product News, Product Updates, Zimbra Server

Hello Zimbra Friends, Customers & Partners, Zimbra 9.0.0 “Kepler” Patch 22 and 8.8.15 “James Prescott Joule” Patch 29 are here. Log4j zero-day exploit vulnerability After intensive review and testing, Zimbra Development determined that the zero-day exploit vulnerability for Log4j (CVE-2021-44228) does not affect the current Supported Zimbra versions (9.0.0 & 8.8.15). Zimbra Collaboration Server currently […]

Continue Reading

Update … Supported Zimbra Versions Not Affected By Zero-Day Exploit Vulnerability for Log4j

By on December 14, 2021 in Community

Hi Zimbra Customers, Partner and Friends, This is an update to our statement yesterday … After intensive review and testing, Zimbra Development determined that the zero-day exploit vulnerability for Log4j (CVE-2021-44228) does not affect the current Supported Zimbra versions (9.0.0 & 8.8.15). Zimbra Collaboration Server currently uses Log4j version 1.2.16. The cause of the vulnerability […]

Continue Reading

Copyright © 2022 Zimbra, Inc. All rights reserved.

All information contained in this blog is intended for informational purposes only. Synacor, Inc. is not responsible or liable in any manner for the use or misuse of any technical content provided herein. No specific or implied warranty is provided in association with the information or application of the information provided herein, including, but not limited to, use, misuse or distribution of such information by any user. The user assumes any and all risk pertaining to the use or distribution in any form of any subject matter contained in this blog.

Legal Information | Privacy Policy | Do Not Sell My Personal Information | CCPA Disclosures