11.07.2016

Kunden, die noch keine GSA Version 7.4. haben, müssen zuerst auf 7.4. aktualisieren, um die neuste Version installieren zu können. Hier ist wichtig, mindestens auf Version 7.4.0.G.120 zu aktualisieren, da es sonst zu Problemen im Aktualisierungsprozess kommen kann.

 

 

 

 

 

Im Folgenden finden Sie das Änderungsprotokoll (Changelog) mit den Original-Angaben von Google:

  • 29339648 - CVE-2016-4447, CVE-2016-4448, CVE-2016-4449, CVE-2016-4483.
  • 29243314 - SupportCall may fail while being used via proxy.
  • 29239872 - Crawler may crash when HTTPS site is crawler over proxy.
  • 29172050 - Security manager can stop processing authorization head requests.
  • 29000596 - Crawling can be interrupted if entity recognition for metatdata is enabled.
  • 4445751 - Support HttpOnly flag for GSA_SESSION_ID cookie.
  • 28579209 - CVE-2016-2107, CVE-2016-2108
  • 28378273 - CVE-2016-1978, CVE-2016-1979
  • 27897429 - Override Document Encoding with HTTP header or metatag.
  • 27563030 - CVE-2016-1950
  • 27426571 - CVE-2016-0800
  • 26100859 - Invalid SSL connection error when trying to setup Forms Authentication.
  • 23891594 - CVE-2014-8730
  • 22682320 - Add support for SSL SNI (Server Name Indication).
  • 22475354 - Recrawls prevent initial crawl from finishing.
  • 21391808 - Support Eliptic Curve Diffie-Hellman to mitigate Logjam vulnerability (aka weak Diffie-Hellman).
  • 21012269 - Removing a large number of URLs (via changing the Follow / Do Not Follow patterns) is very slow and blocks crawling.
  • 19377311 - Support TLS 1.1 and 1.2
  • 19352054 - Dynamic Result Cluster fails with Clustering Server Comm Error.
  • 19313979 - Suggestions crashing when search logs contains long query.
  • 17408718 - query expansion not triggered when using boolean logic like a OR (a AND b) in required fields.
  • 17408301 - Correct order of kerberos encryption types.
  • 17155831 - Allow more than 3 internal onebox results in search results.
  • 16622267 - Allow Document Dates feature to parse PDF CreationDate dates.
  • 14221773 - Upgrade to 7.2 causes previously-disabled mirroring configuration to become enabled which can stop crawling.
  • 13503144 - Feed with base64 encoded, but invalid compressed content stop feed processing and crawling.
  • 13336749 - GSA does not pick the right title for PDF file.
  • 12949726 - Entity recognition for metadata.
  • 12934298 - The URL GSA/search redirects to plaintext HTTP even if the GSA is configured to always serve over HTTPS.
  • 10694167 - Admin Console may wrongly test connectivity to disconnected/offline Connector Managers.
  • 10640596 - Provide ability for administrator user to download SSL private key.
  • 9693599 - Some PDFs in format PDF/A, or generated with ghostscript, are not correctly indexed.
  • 9309287 - Once configured, it is not possible to remove syslog configuration.
  • 9217987 - Provide pre-defined relative date ranges for dynamic navigation configuration.
  • 8803081 - Fix SAML support for SubjectConfirmationData element without NotOnOrAfter attribute.
  • 8269568 - Security Manager returns 500 error if user returns to the login form via back button.
  • 8262178 - Support Open Graph meta tags.
  • 7723196 - Add grouping of multiple metadata under a single Dynamic Navigation attribute.
  • 7320529 - Comply with RFC 2965 so cookie domain string .[domain] can be sent to hosts under [domain]
  • 7124004 - ASR data from replica is not available when reports/logs are generated from Master in Mirrored configuration.
  • 7082345 - Provide warning when Admin Console action will trigger temporary serving outage.
  • 7007819 - For documents crawled through a connector, the Admin Console may show Security at Serve Time: Determined by Connector.
  • 6903749 - Google Search Appliance doesn't support indexing password protected .DOC files.
  • 6846787 - Forms authentication does not send cookie to hostname when cookie domain attribute is set with leading dot.
  • 5992529 - When an uploaded SSL certificate and key pair is mismatched or the uploaded certificate subject does not match GSA's hostname most SSL-powered services are down.
  • 5417025 - Appliance returns 500 error if Perimeter Security is enabled and authentication retries fail.
  • 5362929 - Improve mirroring performance and add support for user-specified bandwidth limit.
  • 5361515 - Support dynamic parameters in Forms authentication.
  • 5355643 - Allow customer to modify HTTP response content-type header per frontend.
  • 4374169 - Forms Authentication wizard fails on certain JavaScript content.
  • 3264369 - Policy ACLs are not migrated during version upgrade.
  • 3197956 - Indexed Content type, Language, Encoding, and Last Modified date entities automatically added to documents and available for Dynamic Navigation.
  • 2138368 - Crawler should be able to authenticate to CSRF protected forms.
  • 2200188 - Improve Query Expansion of diacritics.
  • 1995967 - Provide functionality to disable strict certificate checking during Forms Authentication setup.
  • 1721312 - Admin Console Pattern Tester Utility does not match RE2 back references.
  • 1036406 - Send HTTP/1.1 requests instead of HTTP/1.0 when crawling.
  • 650575 - PDF Document Title uses document content instead of Title property.
  • 648341 - Provide functionality to force a specific language for a document using Content-Language header and HTML language tag.
  • 204251 - Query expansion is not triggered for CJK terms that require segmentation.


Da dieses Update sehr viele Stabilitätsverbesserungen enthält, empfehlen wir allen Kunden das Update zeitnah durchzuführen. Kommen Sie auf uns zu, wir unterstützen Sie bei der Durchführung der Updates.