/[smeserver]/cdrom.image/sme9/README.txt

Diff of /cdrom.image/sme9/README.txt

Parent Directory | Revision Log | View Revision Graph Revision Graph | View Patch Patch

-Revision 1.14 by vip-ire,
Fri Mar 27 08:09:11 2015 UTC
+Revision 1.17 by vip-ire,
Tue Nov 10 09:47:06 2015 UTC
 Line 1
- Koozali SME Server 9.1 Beta 1 Release Notes
+ Koozali SME Server 9.1 RC1 Release Announcement
- ====================================
-th March 2015
+ Koozali SME Server 9.1 RC1 Release Notes
+ ===========================================
+th Nov 2015
  The Koozali SME Server (SME Server) development team is pleased to announce
- the release of SME Server 9.1 Beta 1 which is based on CentOS 6.6.
+ the release of SME Server 9.1 RC1 which is based on CentOS 6.7.
  Bug reports and reports of potential bugs should be raised in the bug
  tracker (and only there, please);
-Line 13 
 tracker (and only there, please);
+Line 14 
 tracker (and only there, please);
  Download
  ========
+ You can download SME Server 9.1 RC1 from
- You can download SME Server 9.1 Beta 1 from
+ http://mirror.contribs.org/smeserver/releases/testing/9.1.rc1/
- http://mirror.contribs.org/smeserver/releases/testing/9.1.beta1/
  or for other methods see http://wiki.contribs.org/SME_Server:Download
  Please note it may take up to 48 hours for mirrors to finish syncing,
  during this time you may experience problems.
  About SME Server
  ================
  SME Server is the leading Linux distribution for small and medium
  enterprises. SME Server is brought to you by Koozali Foundation, Inc.,
  a non-profit corporation that exists to provide marketing and legal support
-Line 52 
 Please visit http://wiki.contribs.org/Do
+Line 50 
 Please visit http://wiki.contribs.org/Do
  Koozali Inc is happy to supply an invoice for any donations received,
  simply email treasurer@koozali.org
  Notes
  =====
+ In-place upgrades are not supported. It is necessary to backup and then restore.
- In-place upgrades from SME 8.x are not supported. It is necessary to backup
- and then restore.
  /boot partition is always RAID 1.
  The spare handling for RAID arrays is not implemented.
  USB installs are now supported, see:
  http://wiki.contribs.org/Install_From_USB#SME_Server_9
+ Major changes in this release
+ =============================
+ Added functionality to use a Dummy NIC for the internal interface
+ Set the check update frequency of smecontribs through the server-manager
+ Disable SSLv3
+ Added Windows 10 support for SME Domain
  Changes in this release
  =======================
-Line 74 
 autogenerated from the changelogs.
+Line 75 
 autogenerated from the changelogs.
  Packages altered by Centos, Redhat, and Fedora-associated developers are
  not included.
  Backups
  -------
+  - dar new upstream version
   - dar add pkgconfig
-  - dar new upstream version
   - Workstation Backup, do not fail backup for mtime/ctime mismatch
   - Change the sub checkMount() to findmnt Ian Wells <esmith@wellsi.com>
   - Add requires nfs-utils
   - The nfs service is neither started or allowed to start
   - Don't remove the apache group during restore
  LDAP
  ----
+  - Remove size limit for search result
   - Make pdbedit output independent from locale and timezone so it can be
     parsed
   - Symlink /etc/init.d/ldap to /usr/bin/sv
 Line 101 
 LDAP
  Localisation
  ------------
+  - apply locale smeserver-locale-2.4.0-locale-2015-07-12.patch
+  - apply locale smeserver-locale-2.4.0-locale-2015-07-01.patch
   - apply locale 2015-03-14 patch from pootle
   - apply locale 2014-12-25 patch from pootle
  Mail Server
  -----------
-  - ClamAV Updated to release 0.98.6
+  - ClamAV Updated to release 0.98.7
+  - Remove the patch e-smith-email-5.4.0-UEsDBBQDAAAIA-new-signature.patch
+  - Add new zip file signatures to default mailpatterns database : UEsDBBQDAAAIA
   - Add new zip file signatures to default mailpatterns database : ZIPVOSX & ZIPV3
   - Disable fips mode on stunnel
   - Use stunnel instead of sslio to support TLS
-Line 121 
 Mail Server
+Line 125 
 Mail Server
   - allow IP relayclient stored by DB
     Code from Stefano ZAmboni <zamboni@mind-at-work.it>
     & Charlie Brady <charlieb-contribs-bugzilla@budge.apana.org.au>
+  - allow IP relayclient stored by DB
+    Code from Stefano ZAmboni <zamboni@mind-at-work.it>
- PHP
+ Server manager
  --------------
+  - fix gzfile accept paths with NUL character #1213407
+  - fix patch for CVE-2015-4024
+  - fix more functions accept paths with NUL character #1213407
+  - soap: missing fix for #1222538 and #1204868
+  - core: fix multipart/form-data request can use excessive
+    amount of CPU usage CVE-2015-4024
+  - fix various functions accept paths with NUL character
+    CVE-2015-4026, #1213407
+  - ftp: fix integer overflow leading to heap overflow when
+    reading FTP file listing CVE-2015-4022
+  - phar: fix buffer over-read in metadata parsing CVE-2015-2783
+  - phar: invalid pointer free() in phar_tar_process_metadata()
+    CVE-2015-3307
+  - phar: fix buffer overflow in phar_set_inode() CVE-2015-3329
+  - phar: fix memory corruption in phar_parse_tarfile caused by
+    empty entry file name CVE-2015-4021
+  - soap: more fix type confusion through unserialize #1222538
+  - soap: more fix type confusion through unserialize #1204868
+  - core: fix double in zend_ts_hash_graceful_destroy CVE-2014-9425
+  - core: fix use-after-free in unserialize CVE-2015-2787
+  - exif: fix free on unitialized pointer CVE-2015-0232
+  - gd: fix buffer read overflow in gd_gif.c CVE-2014-9709
+  - date: fix use after free vulnerability in unserialize CVE-2015-0273
+  - enchant: fix heap buffer overflow in enchant_broker_request_dict
+    CVE-2014-9705
+  - phar: use after free in phar_object.c CVE-2015-2301
+  - soap: fix type confusion through unserialize
   - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710
   - xmlrpc: fix out-of-bounds read flaw in mkgmtime() CVE-2014-3668
   - core: fix integer overflow in unserialize() CVE-2014-3669
-Line 167 
 PHP
+Line 200 
 PHP
  Web Server
  ----------
-  - Disable SSLv3
+  - DIsable SSLv3
+  - Revert CRIME mitigation patch, as it's not needed
+  - Mitigate CVE-2012-4929
   - Turn SSLEngine on in the SSL vhost (ProxyPassVirtualHosts)
   - Remove obsolete gpc_order setting from php.ini.
   - Add an upload_tmp_folder setting by db command
-    Thanks to Michael McCarn and Jean-philippe Pialasse
+  - Thanks to Michael McCarn and Jean-philippe Pialasse
  Other fixes and updates
  -----------------------
+  - Added new createlinks function event_templates event_actions event_services
+  - Don't claim to own /sbin and /sbin/e-smith
+  - display variable name in the server-manager $domainName, $domainDesc $domain
+  - Revert the upload_tmp_folder patch as it needs some more work
+  - Add dummy NIC support as InternalInterface
+  - Only fire the ip-change event when IP is assigned to WAN nic
+    (Code by Charlie Brady and John Crisp)
+  - Only reset service access when switching to or from private server mode
+    (Code by Charlie Brady)
   - When quiting the console app with unsaved changes set the default selected
     answer to NO
   - Added a comment to specify the real configuration file of dhcpd
-Line 241 
 Other fixes and updates
+Line 285 
 Other fixes and updates
   - Added a check-update for the smecontribs repository
   - Move protected package list to the correct location
  General features
  ================
+ - Based on CentOS 6.7 and all available updates
- - Based on CentOS 6.6 and all available updates
  Terry Fage
  On behalf of the SME Server development team

 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
-Removed lines/characters
+Added lines/characters

admin@koozali.org	ViewVC Help
Powered by ViewVC 1.2.1