Ike.ninja

The latest People of WordPress story features trainer Bud Kraus, from the United States, talking about the software and how he uses it.

Red Hat OpenShift Container Platform release 4.9.47 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.9.

We’re pleased to share another great new change we’ve made to WHM based on your feedback: WHM Favorites! With v106, WHM Favorites is located in the Home interface (replacing the Top Tools section). This allows a WHM user to select their favorite features within WHM and group them together for easy and convenient access. The following capabilities are now possible for any WHM user: Customize your Favorites at the top of WHM to have your …

The post WHM Favorites first appeared on cPanel Blog.

An update for convert2rhel is now available for Convert2RHEL for RHEL-7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from

WordPress 6.0.2 is now available for download. This security and maintenance release features several updates since WordPress 6.0.1 in July 2022. You can review a summary of the key changes in this release by visiting https://make.wordpress.org/core/2022/08/23/wordpress-6-0-2-rc1-is-now-available/.

A buffer overflow was discovered in the vhost code of DPDK, a set of libraries for fast packet processing, which could result in denial of service or the execution of arbitrary code by malicious guests/containers.

Several security issues were fixed in the Linux kernel.

Several security issues were fixed in the Linux kernel.

Update dcmtk to 3.6.7 and rebuild dependent packages. The dcmtk update contains security fixes, so this update is highly recommended.

An update for systemd is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

Schroot could be made to denial of service if certain schroot names are used.

Update to 2.36.7: * Fix several crashes and rendering issues. * Security fixes: CVE-2022-32793

The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-32893

In the August 2022 survey we received responses from 1,135,075,578 sites across 271,740,771 unique domains
and 12,365,527 web-facing computers. This reflects a loss of 4.4 million sites, but a gain of 12,212 domains and
24,355 computers.

OpenResty saw the most significant change in web-facing computers, with a gain of 10,138 (6.1%). Furthermore, 2.8
million (3.1%) extra sites were seen since July, with a small loss of 466,322 domains (1.2%). This continues the trend
of OpenResty’s fast growth in web-facing computers (46% since August 2021) while the number of domains and sites has not
grown in tandem, remaining roughly static over the period.

nginx continues to be the most commonly used web server and saw modest gains of 25,053 domains (0.03%) and 13,481
computers (0.3%). However, we experienced a significant reduction in the number of nginx-hosted sites responding to
our requests this month, with a loss of over 15 million. This represents around 4% of sites hosted using nginx in July.

Continuing the trend of strong growth over the past two months, Cloudflare gained an additional 4.4 million sites
(6%) and 1.1 million domains (4.7%). This gives Cloudflare a total market share of 6.8% of sites and 9% of domains, an
increase of 0.4pp on both metrics since July. Cloudflare also had the strongest growth amongst the top million busiest
sites, gaining 0.25pp, thereby holding a 20.51% market share.

Apache’s position as the most commonly used web server for the top million busiest sites continues to erode, with a loss of
0.19pp this month. nginx continues to gain market share, up 0.07pp. If this trend continues, nginx will overtake Apache
in the short term, and in the long term, Cloudflare will overtake both of its rivals.

Vendor news

• nginx reaffirmed its commitment to the open source community in this year’s roadmap, with a greater focus on modernising its community management approach and optimising end developer experiences.
• Lighttpd 1.4.66 was released on 7 August 2022, featuring a range of bug fixes.
• Apache Tomcat 8.5.82 was released on 13 August 2022. The majority of changes were minor, however, the release includes a mitigation for an XSS vulnerability in example code distributed with Tomcat (CVE-2022-34305).
• Cloudflare announced the availability of Weighted Pools for its Load Balancer product, which allows for assigning weights to origin servers to distribute requests non-uniformly.
• LiteSpeed Web Server 6.1 RC1 Dev was released on 17 August 2022. This is the latest version in the LSWS 6.1 stream and includes support for triggering reCAPTCHA in its mod_security engine, and several bugfixes.

Fix for CVE-2018-25032