Collax Server Update 7.2.18 - Security and virus scanner update


Once again, a number of security holes need to be fixed. However, this update can also come up with new functions.

This update closes security gaps in the following components:

  • Web server (Apache)
  • Databases (MariaDB and SQlite)
  • VPN (StrongSwan)
  • Name Services (DHCP, NSS)
  • Virus scanner (ClamAV)
  • Various tools (gnutls, apr-utils, FriBidi)
  • Many libraries (ghostscript, imagemagic, libfreetype6, libpcre2, libnss, libicu)


Encrypted e-mails or password-protected attachments cannot be checked by a virus scanner. The administrator can decide how to handle these e-mails in general. Previously, exceptions could be made for PGP-encrypted e-mails. With this update, he can also configure a different handling of password-protected archives (e.g. .zip, .rar) and documents (e.g. .pdf, .docx).

The fuzzy search on the administration interface now displays initial results while typing. This means that hits are also displayed that are similar but do not match the input 100%. For performance reasons, the hits displayed in advance are limited to terms in the forms. Hits from elements are only found after the search has been submitted.

Further information and details can be found in the Release-Notes of each product.