Announcing the Kolab Server 2.3.4

This time we had a short cycle and only a few updated packages, but I really wanted to get the 2.3.4 release out the door. It fixes not only the annoying build error that affected many people but also includes another fix for the Range header DoS vulnerability in the Apache webserver.

Security updates

Bugfixes

  • imapd: The build error in imapd was fixed.
  • kolab-webadmin: The ActiveSync configuration is back again.
  • kolab-z-push: New version with bugfixes for various Nokia phones.
  • z-push: New upstream version with many bugfixes.

New features

  • none

For a complete list of changes please refer to the release notes.

Upgrading

The upgrade form 2.3.1 is straight forward, there is nothing special you need to care about. If you are upgrading from 2.2.4, please follow the instructions to upgrade from 2.2.4 to 2.3.0 as outlined in the 1st.README file.

Downloads

Documentation and OpenPKG packages are available as shown on the download page. Binary packages for Debian GNU/Linux 6.0 (Squeeze/stable) and 5.0 (Lenny/oldstable) on x86 platforms can be found next to the sources. As soon as they have synced, you can also use the mirrors.

You can check the integrity of the downloaded files by importing our file distribution key and verify the OpenPGP signature and SHA1 checksums:

$ wget https://ssl.intevation.de/Intevation-Distribution-Key.asc
 $ gpg --import Intevation-Distribution-Key.asc
 $ gpg --verify SHA1SUMS.sig
 $ sha1sum -c SHA1SUMS

Bugs

Please report bugs in our bug tracker.

Announcing the Kolab Server 2.3.3

Yesterday I released the Kolab Groupware Server Community OpenPKG Edition 2.3.3. It not only fixes some annoying bugs but also includes some security updates.

Security Updates

Bugfixes

  • dimp: No more blank mails in the preview pane. If you still have problems, please make sure to generate all required locales in both ISO and UTF-8 and delete the webclient cache /kolab/var/kolab/webclient_data/tmp/cache_*
  • horde: All attachments are displayed again, preference woes were fixed and the memory limit was raised to aviod large Kolab objects to cause a white screen.
  • imp: Umlauts in System folders are displayed correctly
  • Kolab_FreeBusy: Triggering with only the localpart of user works again
  • Kolab_Server: Just like in horde, the memory limit was raised to avoid white screens with large Kolab objects.
  • Kolab_Storage: *Lots* of fixes, most notably shared calendars and address books with the same name can now be distinguished.
  • kolab-webadmin: The folder listing in the ActiveSync config and the domain maintainer’s welcome page were fixed
  • kronolith: FreeBusy list of event organizers in their event attendee view is working again
  • openldap: Update to 2.4.26 fixing some memory leaks in slapd

New Features

  • turba: organizationalUnit (ou) is displayed in the global address book as “department”

For a complete list of changes please refer to the release notes.

Upgrading

The upgrade form 2.3.2 is straight forward, there is nothing special you need to care about. Only if you are compiling packages yourself you need to recompile some due to the OpenSSL update as described in the 1st.README file.

If you are upgrading from 2.2.4, please follow the instructions to upgrade from 2.2.4 to 2.3.0 as outlined in 1st.README.

Downloads

Documentation and OpenPKG packages are available as shown on the download page. Binary packages for Debian GNU/Linux 6.0 (Squeeze/stable) and 5.0 (Lenny/oldstable) on x86 platforms can be found next to the sources. As soon as they have synced, you can also use the mirrors.

You can check the integrity of the downloaded files by importing our file distribution key and verify the OpenPGP signature and SHA1 checksums:

$ wget https://ssl.intevation.de/Intevation-Distribution-Key.asc
 $ gpg --import Intevation-Distribution-Key.asc
 $ gpg --verify SHA1SUMS.sig
 $ sha1sum -c SHA1SUMS

Native packages

The native packages for Fedora, EPEL and Debian will be updated to 2.3.3 within the next week.

Bugs

Please report bugs in our bug tracker.

Announcing the Kolab Server 2.3.2

I’m sorry it took so long, but good things take a while. I am relieved the release is out because now that the problems with FreeBusy are solved, the 2.3 series offer the same functionality as 2.2.4  – plus much more of course.

New features

The update to postfix 2.8 brings a lot of new features like postscreen and multi-instance support. However none of them is enabled by default and old configuration files continue to work. Have fun while exploring the new possibilities, we will make use of them in the next major release.

Bugfixes

Most of the bugfixes affect Kolab_* packages such as Kolab_FreeBusy:

  • apache-php: Security update fixing various CVEs
  • Kolab_FreeBusy: Generating free/busy cache works again
  • Kolab_Resource: Answers from resources no longer contain extra “\r\n\r\n”
    characters
  • Kolab_Server: IMAP connection issues fixed
  • Kolab_Storage: Webclient no longer hangs if freebusy triggering/retrieving
    hangs
  • kolab-webadmin: Listing of sub-folders and sub-calendars was fixed
  • kolabd: Fixed an imap annotatoin so SyncML can sync contacts
  • php: Security update fixing various CVEs
  • postfix: Security update to 2.8.3. This also brings a lot of new features
  • z-push: New version with many bug fixes, rebuilding with prefixes other than /kolab fixed.

For a complete list of changes please refer to the release notes.

Upgrading

The upgrade form 2.3.1 is straight forward, there is nothing special you need to care about. If you are upgrading from 2.2.4, please follow the instructions to upgrade from 2.2.4 to 2.3.0 as outlined in the 1st.README file.

Downloads

Documentation and OpenPKG packages are available as shown on the download page. Binary packages for Debian GNU/Linux 6.0 (Squeeze/stable) and 5.0 (Lenny/oldstable) on x86 platforms can be found next to the sources. As soon as they have synced, you can also use the mirrors.

You can check the integrity of the downloaded files by importing our file
distribution key and verify the OpenPGP signature and SHA1 checksums:

$ wget https://ssl.intevation.de/Intevation-Distribution-Key.asc
$ gpg --import Intevation-Distribution-Key.asc
$ gpg --verify SHA1SUMS.sig
$ sha1sum -c SHA1SUMS

Known bugs

  • Bug 98 – Not all folders in the new ActiveSync config are displayed. We are working on that.

Please report bugs in our bug tracker.

Announcing the Kolab Server 2.3.1

Yesterday late at night I finished the the Kolab Server 2.3.1.

Features

There are not many new features because it is a bugfix release, but in the
webadmin you new will find a new ActiveSync configuration. It will work for
most users, however not completely for power-users with lots of nested and
shared folders, so please consider it only a technical preview.

Bugfixes

Most of the bugfixes affect the webadmin, cyrus-imapd and z-push:

  • cyrus-imapd: Work around for missing user_deny.db
  • cyrus-imapd: Properly flush buffer after TLS initiation
  • kolab-webadmin: Problems with new UID based dn were fixed
  • kolab-webadmin: LDAP Error for maintainers group was fixed
  • kolab-webadmin: New welcome pages now work for all users
  • kolab-webadmin: Multi-language function was fixed
  • kolab-webadmin: Kolab Server version string was fixed
  • z-push: The alias “Microsoft-Server-ActiveSync” now works out of the box
  • z-push, kolab-z-push and PEAD-Kolab_Zpush: New versions with many bug fixes

For a complete list of changes please refer to the release notes.

Upgrading

The upgrade form 2.3.0 is straight forward, there is nothing special you need to care about. If you are upgrading from 2.2.4, please follow the instructions to upgrade from 2.2.4 to 2.3.0 as outlined in the 1st.README file.

Downloads

Documentation and OpenPKG packages are available as shown on the download page. Binary packages for Debian GNU/Linux 6.0 (Squeeze/stable) and 5.0 (Lenny/oldstable) on x86 platforms can be found next to the sources. As soon as they have synced, you can also use the mirrors.

You can check the integrity of the downloaded files by importing our file distribution key and verify the OpenPGP signature and SHA1 checksums:

$ wget https://ssl.intevation.de/Intevation-Distribution-Key.asc
$ gpg --import Intevation-Distribution-Key.asc
$ gpg --verify SHA1SUMS.sig
$ sha1sum -c SHA1SUMS

Known bugs

There are still two bugs in freebusy and the resource management:

  • Issue 4730: Generating free/busy cache broken in server 2.3.0
  • Issue 4731: Answer from resources contains extra “\r\n\r\n” characters

These will be fixed in 2.3.2 and we will offer packages for testing next week. Please report bugs in our bug tracker.

Development roadmap

As 2.3.1 was released two weeks after 2.3.0 and I’d like to stick with the two-weeks cycle. This means that the Kolab Server 2.3.2 will be released on Friday, May 13th. Yes, this is an unlucky date, not because I’m superstitious but I will be busy. This might even mean I will release earlier.