EasyApache End of Life Items to be Removed

Jan31
by Ike on January 31, 2014 at 6:30 am
Posted In: Community, cPanel, easyapache, EOL, Hosting, News, ProdDevSec, Software Updates

1/30/2014
Houston, TX –

cPanel, Inc. tentatively plans to release EasyApache 3.24 in the very near future. This version will include the removal of Apache 1.3/2.0, PHP 5.2, and mod_frontpage. As mentioned in Introducing EasyApache’s Optimal Profiles, these End of Life items will no longer be available in EasyApache.

These items will be removed for the following reasons:

  • They are no longer supported by their respective developers.
  • They include known CVEs (Common Vulnerabilities and Exposures).
  • EasyApache provides the most up-to-date, supported versions of Apache (2.2/2.4) and PHP (5.4/5.5).

Keep in mind that viable alternatives to mod_frontpage exist, such as WebDAV and FTP. Also, PHP 5.2 and mod_frontpage will be available as custom modules (“opt mods”).

To ensure that you receive up-to-date product news from cPanel, we encourage you to subscribe to the “Security Advisories and Product Release Announcements” mailing list here: http://cpanel.net/mailing-lists

└ Tags: , , , , , , , ,
 Comment 

Red Hat: 2014:0100-01: kernel-rt: Important Advisory

Jan30
by Ike on January 30, 2014 at 3:31 pm
Posted In: Other

(Jan 28) Updated kernel-rt packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise MRG 2.4. The Red Hat Security Response Team has rated this update as having [More…]

└ Tags: , , ,
 Comment 

Red Hat: 2014:0103-01: libvirt: Moderate Advisory

Jan30
by Ike on January 30, 2014 at 3:31 pm
Posted In: Other

(Jan 28) Updated libvirt packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate [More…]

└ Tags: , , ,
 Comment 

Parallels Plesk Panel 11.5.30 MU#31

Jan30
by Ike on January 30, 2014 at 8:36 am
Posted In: Plesk, Releases

The following issues were resolved:

[-] PHPMyAdmin did not show a remote database if the database name contained capital letters and underscore symbols. (PPPM-895)
[-] Migration failed if the migrated objects were already present on the destination server. (PPPM-919)
[-] When users created a subscription based on a service plane that had the option “Redirect to external mail server with IP address” switched on, Panel issued the error “Unable to create DSMail: Email address is invalid”.(PPPM-1069)
[-] (Linux) If more than 255 IP addresses were added to Panel, the script mailsrv_conf_init failed with the error “Incorrect format of RTM_GETADDR request response”. (PPPM-1274)
[-] (Windows) The training function for SpamAssassin attempted to use mail of suspended domains. (PPPM-1122)
[-] (Windows) The training function for SpamAssassin failed if a wrong IMAP connection string was specified. (PPPM-1122)
[-] (Linux) Instead of a PHP handler’s php.ini file, the system default php.ini file was used to generate a domain-level php.ini file. As a result, sometimes custom PHP for a domain did not work. (PPPM-893)
[-] (Linux) To avoid heap-based buffer overflow in the mod_fcgid module (CVE-2013-4365), the mod_fcgid module shipped with Panel was updated to version 2.3.9. (PPPM-1314)

└ Tags: , , ,
 Comment 

Ubuntu: 2090-1: Munin vulnerabilities

Jan29
by Ike on January 29, 2014 at 3:17 pm
Posted In: Other

(Jan 27) Several security issues were fixed in Munin.

 Comment 

50 queries. 8.75 mb Memory usage. 0.553 seconds.