Release Notes CBS 5.0.16

Collax Business Server
29.06.2010

Issues Fixed in this Version

Security: Samba, Windows SMB/CIFS Server for UNIX

In the source code of the Windows SMB/CIFS fileserver Samba security holes have been discovered. These holes will be closed within this Samba software patch for version 3.0.37.

Assigned Common Vulnerabilities and Exposures (CVE) numbers:

CVE-2010-2063

Security: GNU data type library glib2

In the source code of glib2 security holes have been discovered. These holes will be closed within this Collax software update.

A patch for glib2 2.18.2 is going to be installed and fixes the assigned Common Vulnerabilities and Exposures (CVE) numbers:

CVE-2009-3289

Security: Graphics Librarie Libpng3

In the source code of the graphics library Libpng3 security holes have been discovered. These holes will be closed within this Collax software update to version libpng3 1.2.44.

Assigned Common Vulnerabilities and Exposures (CVE) numbers:

CVE-2010-0205 CVE-2010-1205

Security: Graphics Libraries Libtiff

In the source code of the graphics library Libtiff security holes have been discovered. These holes will be closed within this Collax software update.

Assigned Common Vulnerabilities and Exposures (CVE) numbers:

CVE-2010-1411

Security: Python Language Interpreter and Runtime

In the source code of the Python language interpreter and runtime security holes have been discovered. These holes will be closed within this Collax software update to version 2.6.5.

Assigned Common Vulnerabilities and Exposures (CVE) numbers:

CVE-2010-1449 CVE-2010-1450 CVE-2010-1634

Notes

Add-on Software: New Licensing of Avira Antivir

The Anti Virus product Avira Antivir will now be identically licensed as all Collax Modules. With this method a higher handling comfort is reached and the separate Avira Antivir-License integration is now redundant. Updating the license manually will not be necessary anymore.

Add-on Software: Download Progress Bar when using Avira Antivir Web-Virus-Filter

The anti virus product Avira Antivir displayed a special progress bar while scanning downloaded files. With the new anti virus technology within this update this progress bar becomes superfluous. From this update the progress bar of Avira Antivir is going to be removed.

Misc: PHP update 5.3.6

In cause of the major-release of PHP 5.3.6 it is possible that files which use PHP have to be adapted.