Release Notes
SERVER
- Fix invalid message generated after multiple operations (AXI-5165)
- Fix storage corruption after improperly stopping an instance several times (AXI-5167)
- Log failures attempts when using WebMail and 2-Step Verification (AXI-5198)
- Add an option to CLI repair accounts to skip scanning the entire server (AXI-5199)
- Include usage of domain selection on login in statistics (AXI-5220)
- Improve algorithm that generates the shared secret used for 2-Step verification (AXI-5228)
- Add CLI command to list DAPI details for all domain objects (AXI-5237)
- Fix storage corruption that causes a mailbox container to be used as read only (AXI-5256)
- Fix overflow in upgrade code (AXI-5325)
WEBADMIN
- Fix security issue allowing the injection and execution of Javascript code for admin users with specific permissions (AXI-5219 • CVE-2023-48974)
- Fix security issues allowing the injection and execution of JavaScript for admin users with specific permissions (AXI-5246)
- Fix WebAdmin XSS vulnerability in info_sslcerts (AXI-5291 • CVE-2023-49101)
- Remove the Prototype Javascript library from WebAdmin (AXI-5294 • CVE-2008-7220)
- Fix WebAdmin sessions being disconnected when using /metrics (AXI-4645)
- Upgrade jQuery to version 3.71
Download
How to Install
Use the Axigen Update Script for Linux
For your convenience, we have developed a Bash update script for single server Linux installs.
Update Manually
To update to this version if you are running on Linux, please follow the step by step instructions below:
-
Download the update above and unpack the archive.
-
Install the Axigen binary update
-
Run the following command:
ps aux | grep axigen
and make sure the path of the current binary is /opt/axigen/bin/axigen Stop the Axigen service
-
Use the command ps aux | grep axigen again to confirm that the service is stopped.
-
Rename the current Axigen binary — /opt/axigen/bin/axigen — to something else; for example axigen-bak
-
Copy the downloaded binary to /opt/axigen/bin/
-
Make the new binary executable:
chmod +x /opt/axigen/bin/axigen
-
Set the same permissions and ownership on the current binary as the old one
Start the Axigen service
-
Use the commands:
ps aux | grep axigen
and/opt/axigen/bin/axigen --version
to confirm that the new binary is used.
-
-
Install the Axigen WebMail and WebAdmin updates
-
Stop the Axigen service
-
Rename the current Axigen WebMail and WebAdmin in /var/opt/axigen/ to something else; for example webmail-bak and webadmin-bak, respectively
-
Unpack the WebMail and WebAdmin tar.gz archives:
tar xfz webmail-x.x.x.x.x.tar.gz
tar xfz webadmin-x.x.x.x.x.tar.gz
-
Copy the resulting WebMail and WebAdmin directories to /var/opt/axigen/
-
Recursively set the ownership on the directories to the axigen system user with the commands:
chown -R axigen:axigen /var/opt/axigen/webmail
chown -R axigen:axigen /var/opt/axigen/webadmin
-
Start the Axigen service
-
Download
How to Install
Use the Axigen update script for Windows
For your convenience, we have developed a PowerShell update script for Windows installs.
Update Manually
To update to this version if you are running on Windows, please follow the step by step instructions below:
-
Download the update above and unpack the archive.
-
Install the Axigen binary update
Stop the Axigen service
Rename the current Axigen binary — C:\Program Files\Axigen Mail Server\bin\axigen.exe — to something else; for example axigen-exe.bak
Copy the downloaded binary to C:\Program Files\Axigen Mail Server\bin
Start the Axigen service
-
Install the Axigen WebMail and WebAdmin updates
Stop the Axigen service
Rename the current Axigen WebMail and WebAdmin in C:\Program Files\Axigen Mail Server to something else; for example webmail-bak and webadmin-bak, respectively
Unpack the WebMail and WebAdmin zip archives
Copy the resulting WebMail and WebAdmin directories to C:\Program Files\Axigen Mail Server
Start the Axigen service