Archive Operating System (AOS 6.15) Updates

CVE-2026-31431: Local Privilege Escalation Vulnerability Resolved

A security vulnerability (CVE-2026-31431) that could allow a local user to escalate system privileges has been addressed in AOS 6.15. The affected kernel module is no longer loaded, eliminating the attack surface associated with this vulnerability.

Stronger Encryption Enforced on Incoming SMTP (Port 25)

TLS 1.0 and TLS 1.1 were previously permitted on incoming SMTP connections (port 25). These older protocol versions are considered cryptographically weak and are no longer supported. AOS 6.15 enforces stronger encryption standards on all incoming SMTP connections.

SMTP Certificate Now Includes Full Intermediate Chain

Outbound SMTP connections were using a certificate file that did not include the intermediate certificate chain. This could cause receiving mail servers to reject or distrust the connection. AOS 6.15 ensures the complete certificate chain is presented during SMTP connections, improving deliverability and compatibility with strict mail servers.

Email Forwarding Now Uses Attachment Format

When forwarding emails from search results, emails are now forwarded as attachments. This change ensures that forwarded messages are delivered reliably to all destination mail servers, including those with strict content filtering policies such as modern Exchange and Gmail environments.

AOS 6 to AOS 7 Migration Improvements

Customers migrating from AOS 6 to AOS 7 will benefit from improved reliability during the data gathering phase of the migration process. Certain edge cases that previously caused the migration to fail — particularly when some intermediate search result files were absent — have been resolved. As more customers make the move to our latest platform, we remain committed to ensuring the migration experience is smooth and dependable.

Cross-Version Email Transfer: AOS 6 to AOS 7

AOS 6 vaults can now send email directly to an AOS 7 vault using the data migration feature (Maintenance → Migrate Email). This makes it easier for organizations to move their archived data to the latest version of the platform.

Nightly Summary Email: Garbled Characters

Some customers reported seeing random or garbled characters in the automatically generated nightly summary email. This has been corrected, and the nightly email now renders its content properly.

Nightly Summary Email: Not Generated in Some Cases

Some customers reported that the nightly summary email was occasionally not generated at all. This issue has been resolved to ensure reliable delivery of the nightly report.

Multiple Email Selection Resets Unexpectedly

When selecting multiple emails to perform a bulk action (such as forward, export, or print), the selection would sometimes reset without warning, causing all selected emails to lose their checked status. This issue has been resolved. Bulk selections now remain stable throughout the workflow.

Search Does Not Return Results for Email Addresses Containing Spaces

Searching by an email address that contains spaces — a format that is permitted under email address specifications — returned no results. This has been fixed, and such addresses are now searchable as expected.

Gmail Crawler Reliability Improvements

Several issues affecting the Gmail crawler have been resolved:

• If a user in a Google Workspace did not have Mail Services enabled, the crawler would stop and fail to recover, preventing subsequent users from being crawled. The crawler now skips such users and continues processing.
• In Google Workspace environments with more than 100 users, only the first 100 users were being crawled. All users are now crawled regardless of directory size.
• An intermittent SSL error that occurred while fetching message chunks from Gmail IMAP servers has been resolved.

Mail Services Jobs Disabled After Daylight Saving Time Change

Scheduled Mail Services jobs — such as Teams sync and folder sync — were inadvertently disabled during the biannual transition to and from Daylight Saving Time. These jobs now remain active across DST changes.

Config Upload Does Not Restore Mail Services Servers

After uploading a system configuration file, all configured Mail Services servers were missing from the system. Additionally, servers using OAuth authentication could not be re-added. Both issues have been resolved; Mail Services servers are now correctly restored from a configuration upload, including those using OAuth.

BDAT Command Reference: Text Correction

A text error on the “Enable BDAT Command” settings page has been corrected.

This release reflects our ongoing commitment to security, reliability, and the evolving needs of our customers. We encourage all AOS 6 users to upgrade to 6.15 at their earliest convenience to take advantage of the latest security patches and improvements.

If you have any questions about this release or need assistance with your upgrade, please contact our support team at support.intradyn.com or call 1-800-284-4156. As always, we welcome your feedback — if you have suggestions for features or improvements you’d like to see in a future release, reach out to us. Thank you for being a valued Intradyn customer.

Whether you want to learn more about AOS 6.15 or simply need help with your existing deployment, our team is here for you.