Get started
Home ThinLinc release notes ThinLinc 4.11.0 Release Notes

ThinLinc 4.11.0 Release Notes

Introduction

Cendio are proud to present ThinLinc 4.11.0, with more than 60 enhancements and fixes. The most prominent changes are:

  • ThinLinc Web Access has receieved an overhaul where a large number of minor issues have been fixed and compatibility with modern systems has been improved.
  • Several related security issues have been found in ThinLinc by Kaspersky Lab. These affect the graphics components in ThinLinc and could allow an attacker to take control over the ThinLinc Client or a user's session. Note that an attacker would first need to authenticate, and would not gain any access that the affected user would not normally have. This is currently a theoretical issue where no working exploits have yet been demonstrated. Users are advised to upgrade when convenient. For very sensitive environments more urgency may be appropriate.

ThinLinc works on most modern Linux distributions and is supported on any platform that fulfills our documented requirements.

Changes in This Release

In the list below, the bug number is given in parentheses. For more information, visit https://www.cendio.com/bugzilla/.

Server

  • Fixed an issue where a session might not fully terminate when one of the session life time options were used (e.g. MaxIdleTime). (4753)

General

  • A number of issues have been fixed where a malicious server could cause remote code execution in a client, or a malicious client could cause remote code execution in the server. However, the issues can only be exploited once a session is fully authenticated and established, meaning there is no risk of attacks from unrelated third parties. (7379)
  • TLS 1.3 is now supported, but support for SSL 3.0 has been dropped, as well as support for the 3DES cipher. This affects ThinLinc Web Access and ThinLinc Web Administration. (5967)

Native Client

  • Fixed an issue where the Windows installer for the ThinLinc Client could be used by malicious code to gain administrator privileges via DLL hijacking. To exploit this an attacker would need to be able to put arbitrary files in the same directory as the installer and trick an administrator to run the installer from that directory. (7364)
  • Username is now among the fields in the ThinLinc client that can be locked. To lock the username field you can now use "--lock user". (4233)
  • Fixed an error where the client would incorrectly claim that the private key could not be read. (7377)
  • A bug was fixed where a hint for the context menu hotkey was shown even if no hotkey was selected. (7411)
  • Upgrading the ThinLinc Client will no longer cause global client configuration to be moved away and be replaced by the default values. (5773)
  • The ThinLinc Client installer for Windows is no longer translated to Russian or Turkish because of incompatibilities with some systems. The ThinLinc Client is still fully translated once installed. (6113)

ThinLinc Web Access

  • Support for session name changes while connected has been added. (5738)
  • Fixed an issue where panning on touch devices resulted in an unwanted click. (7387)
  • The helper script for generating self signed certificates can now generate certificates that are compatible with the new requirements in iOS 13 and macOS 15. (7401)
  • The cursor is now more responsive in Internet Explorer, Microsoft Edge and also on all devices with touch support. (5779, 6349)
  • Fixed an issue where the incorrect mouse cursor was shown in recent versions of Microsoft Edge. (7383)
  • A bug was fixed where scroll bars were invisible in Web Access when used on desktops with touch. (7385)
  • A Windows key has been added amongst the extra keys in the control bar. (7386)
  • Fixed an issue where the scroll sensitivity was too high on precise trackpads. (5760)
  • A hint is now displayed to indicate that the control bar can be moved to the other side of the screen. (7384)
  • Fixed many issues where the keyboard would not work correctly. (5135, 6152, 7390, 7416, 7423, 7429)
  • Fixed an issue where spacebar sometimes toggled control bar buttons when using Internet Explorer. (6055)
  • Fixed a bug where changing focus from clipboard text area caused issues when using Internet Explorer and Microsoft Edge. (6054)
  • Modified the Alt and Command keys on iOS and macOS to improve the compatibility between the client and server. This behavior is now the same as on the native client. See the documentation for more info. (7417)
  • Fixed an issue where Internet Explorer could take a long time to load the login page. (7392)

Audio Redirection

  • Fixed and issue where playback or recording did not work when using a USB headset or USB sound card on a Linux client. (7442)

Printing Support

  • Fixed an issue where printing from Wine via the thinlocal or nearest printer always resulted in black and white printout. (7408)
  • Fixed an issue where printing via nearest with modern versions of CUPS would fail. (7446)

Administration

  • Package upgrades of the server packages will no longer cause your existing configuration to be moved away and replaced by the default values. ThinLinc Setup still has the ability to complete your configuration migration. (5773)
  • Fixed an issue where Internet Explorer could take a long time to load the Web Administration. (7392)
  • Fixed an issue where there could be a long delay loading the settings for locations and terminals on SELinux systems. (7445)

Desktop Customizer

  • An issue has been fixed where the Desktop Customizer could crash when encountering certain .menu files. (7381)

Configuration Changes

Modified

  • The /tlwebadm/gnutls_priority and /webaccess/gnutls_priority parameters no longer contains the section "-VERS-SSL3.0" as SSL 3.0 is no longer supported and therefore no longer needs to be explicitly disabled.

A complete configuration reference can be found in the ThinLinc Administrators Guide.

Corrected Issues

ThinLinc has also been enhanced in many other ways. The complete list of corrected issues is:

4233, 4297, 4753, 5135, 5513, 5630, 5651, 5738, 5760, 5773, 5779,
5780, 5967, 6054, 6055, 6113, 6152, 6349, 7126, 7362, 7364, 7365,
7366, 7368, 7369, 7370, 7371, 7376, 7377, 7379, 7380, 7381, 7383,
7384, 7385, 7386, 7387, 7389, 7390, 7392, 7394, 7397, 7401, 7408,
7409, 7410, 7411, 7412, 7416, 7417, 7423, 7429, 7433, 7438, 7439,
7442, 7445, 7446, 7448, 7452, 7456
Linux is a registered trademark of Linus Torvalds.
macOS and OS X are registered trademarks of Apple Computer, Inc.
ThinLinc is a registered trademark of Cendio AB.
Windows is a registered trademark of Microsoft, Inc.

Frequently Asked Questions

  • ThinLinc is packaged in subscriptions with a tiered pricing system. A higher number of subscriptions will give a lower price. The subscriptions can be purchased for different periods, 12, 36 and 60 month. A longer duration will give a greater price. The payment of the subscriptions is done in advance.

    The default rule is that the prices are set in accordance with the number of subscriptions that are purchased at the actual call off. Deviation from this can be eventually agreed if a roll-out plan can be committed in advance.

  • Every valid ThinLinc Subscription Agreement has a specific ID. Contact Cendio at support@cendio.com and refer to your ID, and we will issue new user licenses for you.

  • Contact Cendio support team at support@cendio.com. And refer to your ThinLinc Subscription ID in your support request.

  • We will set up an evaluation account that gives the permission to receive support directly from our technical team. Cendio can also provide trial licenses for more than 10 users. Please contact sales@cendio.com directly.

  • Cendio wants to sponsor organizations where the business aims to make the world better. This means to help people, regions etc. that really need help. Please contact us a sales@cendio.com.

  • Cendio offers a non-profit discount for organizations that fall under the definitions that can be found at the https://www.cendio.com/thinlinc/shop/non-profit-organization/. Please contact us at sales@cendio.com for pricing. 

  • Cendio will, in good time before expiration of the ThinLinc Subscriptions Agreement, send a reminder by email. The renewal process will follow the same routines that are used in a new or additional purchase.

  • Other set-ups are possible for bigger deals. Contact sales@cendio.com.

  • Purchases can be done directly via invoice, web shop or by a reseller. Cendio is a Swedish and EU company with long experience from doing business with foreign organizations. If you have any questions or need support, please contact us at sales@cendio.com

     

  • Best functionality and performance will always be achieved by upgrading to the latest version, both on the server and client-side. A newer version on the client-side will always give a better user experience than a former version. Cendio’s ambition is to keep good compatibility and functionality between the different versions. Historically, good compatibility between versions has been 3-5 years.

  • A ThinLinc set-up consists of a server software, client software and user licenses.

    Server software

    The server software is the heart of ThinLinc installation and handles all sessions, desktop environments and generates the virtual desktop, workspace etc.

    User licenses

    To allow more than 10 sessions to connect access to the server software, user licenses need to be added into the server software. User licenses are bought from Cendio. Please note, when placing user licenses into the ThinLinc server, the counting starts from 0, not 10. In concrete, this means that you need to buy and install the number of user licenses that you need.

    Client software

    The client software is installed on the device that is used to connect to the server and provision the virtual desktop / workspace. If using the web access client, no local installation of client software is needed, the provisioning is generated via the web browser that is installed at the server.

  • It’s up to the licensee to decide who can connect into the server installation. The ThinLinc client software is free of charge and can be downloaded by everyone.

  • The licensing is per organization. There is no limitation on how the ThinLinc user licenses are distributed in the legal organization, as long as the number of consumed licenses don’t exceed the number of paid licenses. It’s allowed to move the user licenses, but not copy.

  • The license use can be seen in the status module, how to manage can be found at https://www.cendio.com/resources/docs/tag/tlwebadm_status.html#tlwebadm-status . ThinLinc will notify you when the limit of licenses has been reached, for detailed information see, https://www.cendio.com/resources/docs/tag/licensehandling.html?highlight=soft

  • Both the ThinLinc server and client software are free to distribute. The user licenses are connected to a purchase and are not allowed to distribute. For more detailed information, see https://www.cendio.com/thinlinc/docs/legal/eula

  • A specific version of ThinLinc is supported 3 years from release date. After 3 years, Cendio can’t guarantee support.

  • The number of user licenses that will be delivered will be in accordance with the number of subscriptions that have been acquired by the customer. The user licenses are perpetual.

  • When adding user licenses into the ThinLinc server, the counting will start from zero. So if you require 200 users, you need to have 200 user licenses

  • You need to buy user licenses and install them in the ThinLinc server. The user licenses are received through buying ThinLinc subscriptions.

  • It’s easy to add new users into a current ThinLinc set-up. By purchasing additional subscriptions into your agreement, so will we issue additional user licenses.

  • Cendio will, after receiving a valid order, distribute user licenses via email for the latest version after a purchase. If the purchase is a renewal and the customers have already received the latest version, no user licenses will be delivered by default, updated licenses will be delivered on request in this case.

  • It’s possible to merge existing agreements. When doing a merge, the period shall be at least 12 months.

  • The default rule is that the prices are set in accordance with the number of subscriptions that are purchased at the actual call off. Deviation from this can be eventually agreed if a roll-out plan can be committed in advance.

  • The client software packages are free of charge.

  • The ThinLinc license is perpetual and will still work after the expiry date of the ThinLinc subscriptions.

     

  • Both as an individual and as an organization, it is not allowed to use the free version of ThinLinc if you have valid user licenses.

  • ThinLinc is free to use for up to 10 concurrent users for both individuals and organizations (on a group basis).

  • ThinLinc Subscriptions give the possibility to run more than 10 concurrent users per ThinLinc installation. It also gives technical support directly from Cendio and the right to get upgrades (new versions) for ThinLinc.

  • ThinLinc Premium Subscription gives prioritized answers, faster response time, and direct access to our qualified technical support via telephone service.

  • The free version of ThinLinc is limited to 10 concurrent users and is supported via the ThinLinc Community. The commercial version of ThinLinc is packaged in a so-called subscription and can be scaled for more than 10 users. The subscriptions also give the right to get professional support in ThinLinc directly from the Cendio technical team.

  • ThinLinc is free to use up to 10 users at the same time per individual or organization worldwide, without any obligations. The usage can be 10 installations with one user per each or one installation with 10 users. What matters is that the 10 users aren’t exceeded.

How can we help you?

Please tell us what you are looking for.