Dear EGroupware users,
we would like to inform you about the following news:
1. EGroupware security update and bug fix release for versions 16.1 & 17.1 RC
2. EGroupware 17.1 is coming soon.
1. EGroupware Penetration Tests / Code Review / Security Update for 16.1 and 17.1 RC
Marcel Mangold from SySS GmbH plus the whole EGroupware development team spent three days digging through our codebase in search of possible vulnerabilities. Three intensive days with lots of insight into how an attacker thinks and works.
We were able to identify some attack vectors, with our knowledge of the EGroupware codebase combined with Marcels pen testing knowhow.
It proved that the EGroupware security architecture on multiple levels – including our eTemplate system – is already quite good, but we’ll of course continue to improve it and already solved the problems we found with this security release.
We have provided a security and bugfix update for EGroupware.
Especially with regard to security updates, we strongly recommend updating your EGroupware systems.
We do not provide an update for version 11.1 and 14.1 and recommend an update to version 16 or 17.
The security update has already been automatically installed for all customers in the EGroupware hosting of EGroupware GmbH. You are already safe and don’t have to do anything.
2. New EGroupware version 17.1 is coming soon
Collaboration makes work easier and can save your team a lot of time.
The new function “Collaborative Editing” with Collabora online office and other new functions of the EGroupware will be presented in our webinar on Thursday, 9th of November 2017. (only in german language). The new EGroupware version 17.1 is coming soon. We will inform you about the exact time schedule and how to update to the new version in the next weeks.
Birgit Becker, EGroupware GmbH
EGroupware Forum help.egroupware.org