To install this update please follow these steps:
1. Go to "System -> System Operation -> Software -> System Update" and click "Get Package List" . The successful update of the package list is indicated by the message "Done!" .
2. Click "Get Packages" . This action downloads the listed update packages.
Important: If you download the packages over a slow connection (ISDN, analog, etc.), the browser may drop the connection to the administration interface. However, the download will continue in the background. Continue with the next step. If you get an error message, wait a few minutes and try again.
3. Click "Install" . This action installs the update. The end of this process is indicated by the message "Done!" .
4. A new kernel is going to be installed. The system will be
rebooted automatically
after installing the update. An appropriate note will be shown if the update process is completed.
Installation Notes
Problems Fixed in this Release
Known Issues
A new kernel is going to be installed and a reboot of the system is necessary. The output of the installation can be disrupted before the reboot is initialized.
Note: Please wait, until all software packages are installed. The reboot of the system will then be initialized automatically and the server is going to be available after a few minutes.
In the source code of the Linux kernel a critical security hole has been discovered. This hole is going to be closed within this patch for the Linux kernel version 2.6.25.
Assigned Common Vulnerabilities and Exposures (CVE) numbers:
In the source code of the Apache webserver security holes have been discovered. These holes will be closed within this Collax software update.
Apache 2.2.12 will be installed. Assigned Common Vulnerabilities and Exposures (CVE) numbers:
CVE-2009-1891 CVE-2009-1195 CVE-2009-1890 CVE-2009-1191 CVE-2009-0023 CVE-2009-1955 CVE-2009-1956
In the source code of the dhcp server security holes have been discovered. These holes will be closed within this Collax software update.
Dhcpd 3.1.2p1 will be installed. Assigned Common Vulnerabilities and Exposures (CVE) numbers:
In the source code of the Internet Domain Name Server security holes have been discovered. These holes will be closed within this patch update for Bind version 9.5.1.
Assigned Common Vulnerabilities and Exposures (CVE) numbers:
In the source code of the download tool curl security holes have been discovered. These holes will be closed within this patch update for curl version 7.19.0
Assigned Common Vulnerabilities and Exposures (CVE) numbers:
In the source code of the IKE daemon pluto security holes have been discovered. These holes will be closed within this patch update for pluto version 2.4.9
Assigned Common Vulnerabilities and Exposures (CVE) numbers:
In the source code of the graphics library Libpng3 security holes have been discovered. These holes will be closed within this Collax software update to version libpng3 1.2.39.
Assigned Common Vulnerabilities and Exposures (CVE) numbers:
After the upgrade from version 4 to version 5 of the Collax server backups on tape were interrupted with following message: "Please mount volumes Tape1 or label a new one for:". The suitable tape drive could not be mounted properly into the system. This error is repaired with this update. The Tape drive is mounted correctly into the system and the associated backup job is executed completely.
In version 5.0.4 Sieve rules (Absence note / holiday note) were not displayed within Squirrel. With the version 5.0.6 this behaviour is repaired, rules for absence notes etc. are displayed.
Note! For the correct functionality it can be necessary to execute the following steps within Squirrel-Webmail: "Options" -> "Display Preferences" -> "Use Javascript" -> "Always", then klick "Submit" again.
Executing the NLST command on a non matching file within a ftp connection the ftp server gave the feedback "150 Opening ASCII mode data connection for file list", afterwards "450 No files found" and the data connection quits. This behaviour it is corrected with this update. After a NLST command on a not available file the message "450 No files found" is correctly returned and the data connection remains established.
SSL-VPN offers a secure and authenticated connection to internal network resources. In version 5.0.4 user credentials of an ActiveDirectory user was doubly interrogated for the use of SSL VPN: Once in the Collax WebAccess and afterwards when calling the SSL VPN application. With update 5.0.6 this behaviour is improved. ActiveDirectory users log in to the Collax Webaccess and can execute the associated SSL VPN applications, without additional input of login credentials.
The active monitoring tests the functionality of the email filter chain via the SMTP protocol. If the Kaspersky virus scanner is activated in the filter chain a warning is responded, because the Kaspersky email scanner replies with status code 250 even it is working correctly. The e-mail traffic and the virus scanner function perfectly. Error message: "Disabled SMTP response received from host on port 10029: 250 filters KAV4LMS"