1/30/2014 Houston, TX – cPanel, Inc. tentatively plans to release EasyApache 3.24 in the very near future. This version will include the removal of Apache 1.3/2.0, PHP 5.2, and mod_frontpage. As mentioned in Introducing EasyApache’s Optimal Profiles, these End of Life items will no longer be available in EasyApache. These …
(Jan 28) Updated kernel-rt packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise MRG 2.4. The Red Hat Security Response Team has rated this update as having [More…]
(Jan 28) Updated libvirt packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate [More…]
The following issues were resolved:
[-] PHPMyAdmin did not show a remote database if the database name contained capital letters and underscore symbols. (PPPM-895)
[-] Migration failed if the migrated objects were already present on the destination server. (PPPM-919)
[-] When users created a subscription based on a service plane that had the option “Redirect to external mail server with IP address” switched on, Panel issued the error “Unable to create DSMail: Email address is invalid”.(PPPM-1069)
[-] (Linux) If more than 255 IP addresses were added to Panel, the script mailsrv_conf_init failed with the error “Incorrect format of RTM_GETADDR request response”. (PPPM-1274)
[-] (Windows) The training function for SpamAssassin attempted to use mail of suspended domains. (PPPM-1122)
[-] (Windows) The training function for SpamAssassin failed if a wrong IMAP connection string was specified. (PPPM-1122)
[-] (Linux) Instead of a PHP handler’s php.ini file, the system default php.ini file was used to generate a domain-level php.ini file. As a result, sometimes custom PHP for a domain did not work. (PPPM-893)
[-] (Linux) To avoid heap-based buffer overflow in the mod_fcgid module (CVE-2013-4365), the mod_fcgid module shipped with Panel was updated to version 2.3.9. (PPPM-1314)
(Jan 27) Several security issues were fixed in Munin.
(Jan 27) Updated java-1.6.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having [More…]
1/28/2014 Houston, TX – cPanel, Inc. is thrilled to release cPanel & WHM software version 11.42, which is now available in the CURRENT tier. cPanel & WHM version 11.42 offers a brand new theme, an upgrade to Horde Groupware Webmail, and more. Paper Lantern Theme As part of 11.42, cPanel …
(Jan 23) NSS could be made to expose sensitive information over the network.
(Jan 23) A regression has been found on the denyhosts packages fixing CVE-2013-6890. This regression could cause an attempted breakin attempt to be missed by denyhosts, which would then fail to enforce a ban. [More…]
(Jan 23) NSPR could be made to crash or run programs if it received a speciallycrafted certificate.
(Jan 23) Several security issues were fixed in OpenJDK 7.
(Jan 22) Updated openstack-keystone packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having moderate [More…]
Enkompass version 3.0 will reach End of Life in February 2014. In accordance with our EOL policy [go.cpanel.net/eol], Enkompass will continue to function on servers after it reaches EOL. However, we will not provide further updates (for example, security fixes and installations) for Enkompass version 3.0 after it reaches its …
(Jan 22) Updated openstack-heat packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. [More…]
(Jan 22) Updated openstack-neutron packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. [More…]
(Jan 23) Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5.5.35. Please see the MySQL 5.5 Release Notes and Oracle’s Critical Patch Update advisory for further details: [More…]
After six weeks and more than 9.3 million downloads of WordPress 3.8, we’re pleased to announce WordPress 3.8.1 is now available. Version 3.8.1 is a maintenance releases that addresses 31 bugs in 3.8, including various fixes and improvements for the new dashboard design and new themes admin screen. An issue with taxonomy queries in WP_Query […]
(Jan 17) The fix for CVE-2013-4969 contained a regression affecting the default file mode if none is specified on a file resource. The oldstable distribution (squeeze) is not affected by this regression. [More…]
(Jan 17) This DSA updates the MySQL 5.1 database to 5.1.73. This fixes multiple unspecified security problems in MySQL: http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html [More…]
(Jan 21) devscripts could be made to run programs if it opened a specially craftedfile.
(Jan 20) Multiple vulnerabilities have been discovered in Drupal, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following issues: [More…]
(Jan 17) Multiple security issues have been found in Libvirt, a virtualisation abstraction library: CVE-2013-6458 [More…]
(Jan 21) Several security issues were fixed in HPLIP.
(Jan 21) Several security issues were fixed in MySQL.
(Jan 20) Updated bind packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate [More…]
(Jan 20) Updated augeas packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate [More…]
(Jan 15) CUPS could be made to expose sensitive information.
(Jan 16) Graphviz could be made to crash or run programs as your login if it openeda specially crafted file.
(Jan 14) Updated java-1.7.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having [More…]
58 queries. 8.75 mb Memory usage. 1.430 seconds.