Security fixes and new features

Security Fixes: Heise has summarized information about the 77 processor gaps in a news ticker article. Kernel and microcode are updated for closing. Furthermore, gaps in the components Apache, Heimdal, OpenLDAP, Tomcat, xlst, sqlite, curl and expat are closed.

Distribution of CRL: To simplify the deployment of CRL, this update supports an OCSP server or can specify a URL where the CRL of a certificate can be retrieved.

Kopano-Tuning: As new expert settings, a number of settings can be made for the Kopano core. This can be useful for Kopano installations with a high number of users and special requirements.

New versions: The components Samba 4.9 and the kernel will be updated with this update.

Fixed problems: VPN tunnels with renewed Let’s Encrypt certificates were not always built. The display of banned IP addresses of the intrusion prevention sometimes ended in a time-out. Searching the mail archive showed unexpected behavior in certain cases.

Further information and details can be found in the Release-Notes of each product.