PowerFolder Server 16 SP8
- Release Date: January 2022
- Build Number: 16.8.100
- Type: Service Pack Release
CVE-2021-44228
PowerFolder is NOT affected by CVE-2021-44228.
In the software we do not use the affected library LOG4J, but instead use the Java system implemented logging mechanism.
Fixed Security Issue
This release contains major security fixes.
All production builds are starting from X.Y.100* and development builds (not for productive use) are starting from X.Y.1 - 99
* (Where X=Major software version and Y=Service pack number)
Download Links
Upgrade Information
- Please read this complete Release Notes and instructions before upgrading.
- Please follow the regular upgrade documentation for Windows or Linux
- Upgrading any previous version higher or equal to version 11.8
- Cluster: Running different versions on the servers in the cluster is supported but limited to version >= 14.3.5
New Feature: Storage Migration during Uptime (BETA)
Automatic migration of data on backend storage
This function is currently marked as in beta state. Although heavy quality assurance was run on it, we still recommend to fully run this function in test systems only.
For more information, please visit our documentation.
Downgrade Information (optional)
- In case a downgrade to a previous version is necessary:
- For a downgrade you have to review our downgrade documentation.
- Simply replace the PowerFolder-Server.jar file with that from the previous version you would like to run.
- Log messages due to the higher schema version of database can be ignored:
[DatabaseMigrator]: Database layout version is newer than expected.
Changes
- PFS-3930 - API call for folders and accounts to block / unblock folder access
- PFS-3636 - Restoring files from the recycle bin in web should contain time-stamp (last modification date)
- PFS-3922 - Fix display error in the folder options window
- PFS-3924 - Fix assign folder as server or org admin
- PFS-3918 - Delete invitations as soon as the shared folder is also deleted
- PFS-3926 - Workaround for Zotero non-standard requests
- PFS-3923 - Block merge account action in case of same email as username
- PFS-3936 - Federation: Skip repeating merge notes in account
- PFS-3937 - Apply "correctStoragePaths" using API independent of config entry
- INT-601 - 4.8 Security checked API for correct authorization
- INT-582 - 4.4 Security enhancement in web upload
- INT-580 - 5.8 Security fix in document editing
- INT-592 - 5.4 Security fix in upload form