View Source

Release Date: November 2021
Build Number: 16.6.100
Type: Service Pack Release

PowerFolder is not affected by CVE-2021-44228.

In the software we do not use the affected library LOG4J, but instead use the Java system implemented logging mechanism.

This release contains an important API security fixes.

All production builds are starting from X.Y.100* and development builds (not for productive use) are starting from X.Y.1 - 99

* (Where X=Major software version and Y=Service pack number)

Download Links

Upgrade Information

Please read this complete Release Notes and instructions before upgrading.
Please follow the regular upgrade documentation for Windows or Linux
Upgrading any previous version higher or equal to version 11.8
Cluster: Running different versions on the servers in the cluster is supported but limited to version >= 14.3.5

New Feature: Storage Migration during Uptime (BETA)

Automatic migration of data on backend storage
This function is currently marked as in beta state. Although heavy quality assurance was run on it, we still recommend to fully run this function in test systems only.

For more information, please visit our documentation.

Downgrade Information (optional)

In case a downgrade to a previous version is necessary:
- For a downgrade you have to review our downgrade documentation.
- Simply replace the PowerFolder-Server.jar file with that from the previous version you would like to run.
Log messages due to the higher schema version of database can be ignored:
- [DatabaseMigrator]: Database layout version is newer than expected.

Changes

- PFS-3878 - Restrict self registration of users to configurable list of domains
- PFS-3904 - Fix welcome invitations for new users using multi-invitation containing spaces in web
- PFS-3900 - Fixed possible server crash due to threads exceeding limit caused by folder renaming
- PFS-3869 - Possibility to move accounts between organizations
- PFS-3882 - Fix error 403 / 401 in public editing using subfolders
- PFS-3879 - Create new user: Organization default should be empty if creating account (reseller) is admin of multiple organizations
- PFS-3880 - Refinement in the expiry date in the upload forms
- PFS-3870 - Hide folder in recycle bin when only deleted subdirectories exists
- PFS-3881 - Fix migration of older upload forms
- PFS-3884 - Unable to edit file links when the user is logged in
- PFS-3812 - Fix "Allow optional upload for the links / file_link.allow_uploads=false" from the security preferences
- PFS-3908 - Prevent losing LDAP config
- INT-579 - Security fix in API call
- INT-590 - Security fix in WebDAV API