IceWarp EPOS 3 Server – Release Notes (Version 14.3.0.6)
IceWarp EPOS Server – Release Notes
Version 14.3.0.6 | June 15, 2026
This release focuses on new features, stability, performance, and numerous improvements to the core IceWarp Server, highlighted below.
Several fixes address issues reported in production environments, including improved Antivirus settings, DKIM signing, Account session monitoring, and the mitigation of possible cross-site scripting vulnerabilities.
Administrator Impact Summary
|
Item |
Status |
|
Service restart required |
Yes |
|
Configuration changes required |
No |
|
Database migration |
No |
|
Breaking changes |
Yes |
|
Security-related release |
Yes |
|
Recommended action |
Planned update |
New Features
- WEBCLIENT - Added a clickable button next to the link in the location field during event creation in webmail.
- SERVER - Added the ability to include multiple file extension masks on a single line in the Antivirus settings.
Improvements & Optimizations
- WEBCLIENT - Identified a cross-site scripting vulnerability in the upload.php file due to insufficient input sanitization.
- WEBCLIENT - Fixed a vulnerability allowing cross-site scripting in the TeamChat invite feature.
- WEBCLIENT - Implemented regular checks of account status to ensure sessions are terminated if the account is disabled.
- WEBCLIENT - Improved the task creation process by automatically setting the start date to today for recurring tasks without a specified start date.
- WEBCLIENT - Improved the WebClient by enabling the rendering of dashboards directly, without using iframes.
- SERVER - Improved the email processing order to ensure DKIM signing occurs after content filters and header/footer modifications, enhancing email deliverability.
- SERVER - Improved clarity by proposing the removal of Bayesian from AS due to its obsolescence.
Fixed Issues
- WEBCLIENT - Fixed the text display issue when highlighted in Dark mode for the WebClient.
- WEBCLIENT - Fixed the display issue where the complete body of certain emails was not shown, requiring a refresh or switching between emails for proper viewing.
- WEBCLIENT - Fixed the issue where parent folders lost their names in the folder tree when a subfolder was shared with another user.
- WEBCLIENT - Fixed the time zone offset issue when suggesting a new time for calendar invitations.
- WEBCLIENT - Fixed the issue where a changed occurrence of a recurrent event was not recognised as accepted in the email invitation after the initial acceptance.
- WEBCLIENT - Fixed the file upload functionality to ensure files are uploaded to the current folder instead of the default folder.
- WEBCLIENT - Fixed the issue where replies incorrectly used a disabled alias as the MAIL FROM address.
- SERVER - Fixed the issue preventing users from opening downloaded zip attachments on MacOS due to admin restrictions.
- SERVER - Fixed an infinite loop error when generating file thumbnails in TeamChat.
- SERVER - Fixed the problem where new emails returned zero bytes on fetch by ensuring the server fully indexes them before retrieval.
- SERVER - Fixed the issue of emails getting stuck in the MDA queue on Windows servers by resolving the SMTP process block.
- SERVER - Fixed the issue where the customer’s POP3 was not consistently downloading message content despite indicating new messages were available.
- SERVER - Fixed the handling of UTF8 paths on Windows to prevent errors during backups and ensure successful archive creation.
- SERVER - Fixed the issue with meeting invitations not being delivered to Microsoft 365 mailboxes in the hybrid IceWarp environment.
- SERVER - Fixed the TeamChat/IM access issue for users affected after the upgrade to ensure all accounts can send messages and use the chat functionality.
- OUTLOOK SYNC - Fixed the Outlook crash by addressing the handling of encrypted delivery reports for digitally signed messages.
- EXCHANGE ACTIVE SYNC (EAS) - Fixed the discrepancy in scheduled event times displayed between the mobile Calendar and Mail applications.
Security Updates
- Identified a cross-site scripting vulnerability in the upload.php file due to insufficient input sanitization.
- Fixed a vulnerability allowing cross-site scripting in the TeamChat invite feature.
Breaking Changes & Deprecations
- SERVER - Improved clarity by proposing the removal of Bayesian from AS due to its obsolescence.
Upgrade Notes
- Downtime required: Yes (service restart required)
- Estimated downtime: Up to 15 minutes when upgrading from 14.2.X
- Backup recommendation: Full configuration and data backup before upgrade
- Rollback supported: No
Compatibility & Configuration Notes
- No changes to default configuration values.
- Fully compatible with existing LDAP and Active Directory integrations.
- No changes to supported browsers for WebClient.
Supported systems
- Windows Server (2016 or newer) and Linux (RHEL 8/9, Rocky Linux 8/9, CentOS Stream 9)
- Outlook Sync (14.1 or newer)
- IceWarp Desktop Client (10.0 or newer)
- IceWarp FileSync (14.1 or newer)
- IceWarp mobile (5.0 or newer) and Authenticator (1.1 or newer)
Support & Feedback
If you experience any issues after upgrading, contact IceWarp Support and reference IceWarp Server 14.3.0.6. Please include server version, operating system, database type and version and relevant logs when opening a support case.
Post is closed for comments.
Comments
0 comments