So what happened the last few days and weeks? You guessed it! Some important security updates!
To sum it up:
– Critical: There was a dovecot security issue fixed which can lead to private information leakage and remote code execution. Read more here.
– ClamAV got updated to v0.101.4 to address zipbomb vulnerability. Read more here.
– A few XSS vulnerabilities in the mailcow UI were fixed.
– Beside the security fixes there were also more mailserver blacklists and spam rules added to improve spam detection.
An update of your mailcow instances is strongly recommended and should be done as soon as possible. Update is possible as usual by executing the update script.
(Telegram users might be wondering: Yes, this is indeed a cross-post from my Telegram News post a few days arlier.)