[Users] Last security patch
David Touitou
david at network-studio.com
Tue Mar 19 14:08:11 CET 2019
Hi,
> The tint0 article is a little too far above my understanding of programming, but
> if the article's IMAP exploit is addressed via current patches on 8.7.11 and
> 8.8.10/11, then all we need to worry about is the memcache issue.
The blog post was done once the vulnerabilities were patched, that's in the post conclusion.
So we should not worry about the memcached issue if running the very last version of Zimbra (as IMAP can not reclaim the needed data from memcached anymore).
As Barry said, automatic upgrade would be great. On a stable and working version.
But current Q&A doesn't allow that.
David
More information about the Users
mailing list