Zimbra 6.0.3 Is Out & Recommended

We are pleased to announce that the Zimbra Collaboration Suite version 6.0.3 is now available.

This is primarily a security release to address the third-party SSL/TLS renegotiation ‘man in the middle’ protocol flaw (CVE-2009-3555), but we also took the opportunity to address several of your most pressing issues.

You can now upgrade 5.0.20 to 6.0.3 (previously that path was not possible with 6.0.2, and had we mentioned waiting until 6.0.4). For those choosing to remain on the 5.x series we will be releasing 5.0.21 shortly.

Security Fixes:
42422 – upgrade OpenSSL
42570 – upgrade Jetty
42508 & 42509 – upgrade Nginx

Zimbra Fixes:
42761 – Enable upgrade path from 5.0.20 to 6.0.3
42074 – Mail view scrolls to top
41920 – Duplicates returned in contact search
41753 – forwarded invitations get stuck in the queue
42012 – Jetty Acceptor1 misbehaving channels
42127 – Message showed a blank page when opened
42477 – jetty cancels server socket key in busy key workaround

Further details on PMweb & Bugzilla.

Before upgrading, kick-off a backup while you read the release notes.

6.0.3 Network Edition: Release Notes & Downloads

6.0.3 Open Source Edition: Release Notes & Downloads

~~~

Known issues:
-Posix & Samba extension users should understand this doc.
-Disclaimer extension is not compatible.
-Large setups may be interested in optimizing the LDAP upgrade step.
-Switching to RGB values for tags/folders handling of old 1-9 values caused some to be orange/color not inherited.
-Primary/Secondary family mailbox quirks.

Paths to getting on latest ZCS version:
6.0.x > 6.0.3
5.0.2 – 5.0.20 > 6.0.3 (or upcoming 5.0.21)
4.5.7 – 5.0.1 > 5.0.20 > 6.0.3
4.5.0 – 4.5.6 > 4.5.11 > 5.0.20 > 6.0.3
(LDAP replicas additional step when going 4.5.x > 5.0.x)

-The Zimbra Team