Release Notes CSG 5.8.10

Collax Security Gateway
29.04.2015

Installation Notes

Update Instructions

To install this update please follow the following steps:

Procedure

  1. It is highly recommended to backup of all server data with the Collax backup system before proceeding. Check that the backup was successful before proceeding with the update (this can be done within the backup information email).
  2. In the administration interface go to System → System Operation → Software → System Update and press Get Package List. This will download the listed update packages. If successful the message Done! will be displayed on the screen.
  3. Click Get Packages to download the update packages.
  4. Click Install. This installs the update. The end of this process is indicated by the message Done!.
  5. A new kernel will now be installed. The system will reboot automatically after installing the update. An appropriate note will be shown if the update process is completed.

New in this Version

Security: Amavis - Filter extensions

AMaViS (A Mail Virus Scanner) is a high-performance and reliable interface between the mailer (MTA) and one or more content checkers: virus scanners, spam filter. The admin can now filter extensions in attachments of mails by entering the unwanted extensions in a text box. Attachments with the provided extension will be filtered even when they were containted in a zip file or any other packed format for which an unpacker exists.

GUI: Tree view of certificates

Certificates are displayed in the list of certificates. Signed certificates and Certificate Authorities (CAs) are in connection. With this release the connection is arranged in a new tree view resulting in a cleared arrangement.

Issues Fixed in this Version

Security: MySQL Database

In the source code of the MySQL database security holes has been discovered. These holes will be closed within this software update to version MySQL 5.5.43.

Security: Scripting Language PHP5 and PHP Libraries

In the source code of PHP5 security holes have been discovered. These holes will be closed within this software update to PHP 5.6.8. See PHP 5.6.8 Changelog

Assigned Common Vulnerabilities and Exposures (CVE) numbers:

CVE-2015-1351 CVE-2015-1352

Security: ClamAV

In the source code of the virus scanner ClamAV security holes have been discovered. These holes will be closed within this software update to the version 0.98.7.

CVE-2015-2668 CVE-2015-2222 CVE-2015-2221 CVE-2015-2170 CVE-2015-2305