Trend Micro Incorporated                             February 19, 2016 
  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
              Trend Micro(TM) SafeSync(TM) for Enterprise 3.1
                      Critical Patch  - Build 1275
  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 
 
     Contents
     ===================================================================
 
    1.  Overview of this Critical Patch Release

         1.1 Issues

         1.2 Files Included in this Release

     2.  Documentation Set

     3.  System Requirements

     4.  Installation

         4.1 Installation Notes

         4.2 Installing

         4.3 Uninstalling

     5.  Post-installation Configuration

     6.  Known Issues

     7.  Release History

     8.  Contact Information

     9.  About Trend Micro

     10. License Agreement

     ===================================================================

 1. Overview of this Critical Patch Release
 =======================================================================
    This critical patch resolves several issues and adds several 
    enhancements. Refer to the following section for more information.

    1.1 Issues
    ====================================================================
    This critical patch resolves the following issues and includes the 
    following enhancements:

    Issue 1:    The MySQL process may use more than 90% of CPU resources 
                to handle SQL queries in the SafeSync 3.1 Server because
                the SafeSync for Enterprise client keeps on sending and 
                retrieving journal requests from the server.              
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 1: This critical patch keeps the CPU resource usage of the
                MySQL process within manageable levels.
                
    Issue 2:    Users cannot view the properties of the team folder 
                properly if there is a large number of files and folders 
                in the team folder on SafeSync for Enterprise 3.1.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 2: This critical patch ensures that users can view the team 
                folder properties without issues.
             
    Issue 3:    Users cannot log on to SafeSync for Enterprise 
                without the prefix domain if the "Require domain name 
                when end-users log on" option is disabled in the 
                Supermode page of the management console.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 3: This critical patch ensures that users can log on to
                SafeSync for Enterprise without providing the prefix  
                domain under this scenario.
     
    Issue 4:    Users cannot log on to SafeSync Server using an email
                address if the "Allow log on using an email address" 
                option is enabled in the Supermode page of the 
                management console.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 4: This critical patch ensures that users can log on to the
                SafeSync Server using an email address under this 
                scenario.

    Issue 5:    The subscribed Active Directory (AD) users and groups 
                list may be deleted unexpectedly if the AD Server is 
                unreachable or becomes disconnected while the AD syncing 
                task is running.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 5: This critical patch ensures that the AD users and groups 
                list is not deleted under this scenario.
     
    Issue 6:    After SafeSync syncs up the AD users/groups information, 
                some AD users may be disabled unexpectedly if the 
                corresponding accounts have previously expired and then 
                re-activated.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 6: This critical patch ensures that these AD user accounts
                are not disabled unexpectedly.

    Issue 7:    The built-in Microsoft(TM) Internet Explorer(TM) 11 on 
                Microsoft Windows(TM) 8 and 8.1 cannot display the 
                properties of the personal and team folders properly and
                the page remains in "refreshing" status.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 7: This critical patch ensures that users can view the
                personal and team folder properly under these 
                environments.

    Issue 8:    SafeSync for Enterprise 3.1 contains Ubuntu 12.04.4 LTS 
                which is affected by the CVE-2016-0777 and CVE-2016-0778 
                vulnerabilities.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 8: This critical patch updates the "1:5.9p1-5ubuntu1.8"
                openssh-client/openssh-server package in SafeSync for
                Enterprise 3.1 to resolve the vulnerabilities.

    Issue 9:    The Search function in the end user portal is affected
                by a Cross-site Scripting (XSS) vulnerability.
                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Solution 9: This critical patch removes the vulnerability.

    Enhancement 1: This critical patch enables the debugging log of the
                   AD module to record non-English characters.
     
    Enhancement 2: This critical patch enables SafeSync to add debugging 
                   information to AD debugging logs if the SafeSync AD 
                   user triggers the account expiration criteria on the
                   Microsoft Active Directory Server.

    Enhancement 3: This critical patch enables the SafeSync for 
                   Enterprise 3.1 end user portal to support the Thai 
                   language .                   

    1.2 Files Included in this Release
    ====================================================================

    A. Files for Current Issues
    --------------------------------------------------------------------
       Filename                              Build No.
     -------------------------------------------------------------------
       ssfe_31_linux_hfb1275                 3.1.0.1275

    B. Files for Previous Issues
    --------------------------------------------------------------------
       Not applicable.


 2. Documentation Set
 =======================================================================
    To download or view electronic versions of the documentation set for 
    this product, go to http://docs.trendmicro.com

    In addition to this readme.txt, the documentation set for this 
    product includes the following:
     
    - Online Help: The Online Help contains an overview of features
      and key concepts, and information on configuring and
      maintaining SafeSync for Enterprise.
     
      To access the Online Help, go to http://docs.trendmicro.com

    - Support Portal: The Support Portal contains information on
      troubleshooting and resolving known issues.

      To access the Support Portal, go to http://esupport.trendmicro.com 
 

 3. System Requirements
 =======================================================================
    This critical patch has the same system requirements as SafeSync for 
    Enterprise 3.1 and must be installed only on the physical or
    virtual server where SafeSync for Enterprise 3.1 Build 1228 is
    installed.


 4. Installation
 =======================================================================

     4.1. Installation Notes
     =================================================================== 
     1. Ensure that your SafeSync for Enterprise Server is running 
        SafeSync for Enterprise 3.1 Build 1228.
   
     3. If you have installed SafeSync for Enterprise in a 
        high-availability deployment, install the critical patch on one 
        of the appliances (appliance 1 or appliance 2) and the appliance
        will automatically apply this critical patch.

     4. Do not close the browser when installing the patch through a
        web browser.
  
     5. Ensure that both SafeSync for Enterprise Servers (appliance 1 
        and appliance 2) are connected to the network and working 
        properly before installing this critical patch.

     4.2 Installing
     ===================================================================
     To install:

     1. Log on to the SafeSync for Enterprise Management Console.

     2. Go to the "Administration > System Updates" page.

     3. Click "Choose File" and select the 
        "ssfe_31_linux_hfb1275" file.
   
     4. Click "Update" and click "Yes".
 
     4.3 Uninstalling
     ===================================================================
     No special uninstallation instructions are provided.

        
 5. Post-installation Configuration
 =======================================================================
    No post-installation steps are required.


 6. Known Issues
 =======================================================================
    There are no known issues for this critical patch release. For other
    known issues, please refer to the product release notes.


 7. Release History
 =======================================================================
    For more information about updates to this product, go to:

    http://www.trendmicro.com/download   

   
 8. Contact Information  
========================================================================
    A license to Trend Micro software usually includes the right to
    product updates, pattern file updates, and basic technical support
    for one (1) year from the date of purchase only. After the first
    year, you must renew Maintenance on an annual basis at Trend Micro's
    then-current Maintenance fees.

    Contact Trend Micro via fax, phone, and email, or visit our web site
    to download evaluation copies of Trend Micro products.

    http://www.trendmicro.com/us/about-us/contact/index.html

    NOTE: This information is subject to change without notice.  
        

 9. About Trend Micro
  ======================================================================
    Smart, simple, security that fits

    As a global leader in IT security, Trend Micro develops innovative
    security solutions that make the world safe for businesses and
    consumers to exchange digital information.

    Copyright 2016, Trend Micro Incorporated. All rights reserved.
     
    Trend Micro, SafeSync, and the t-ball logo are trademarks of 
    Trend Micro Incorporated and are registered in some jurisdictions. 
    All other marks are the trademarks or registered trademarks of their 
    respective companies.


 10. License Agreement  
  ========================================================================
    View information about your license agreement with Trend Micro at: 
    www.trendmicro.com/us/about-us/legal-policies/license-agreements

    Third-party licensing agreements can be viewed:

    - By selecting the "About" option in the application user interface

    - By referring to the "Legal" page of the Administrator's Guide