SUMMARY cPanel, Inc. has released updated RPMs for EasyApache 4 on July 12, 2017, with PHP versions 5.6.31, 7.0.21, and 7.1.7. This release addresses vulnerabilities related to CVE-2017-9224, CVE-2017-9226, CVE-2017-9227, CVE-2017-9228, CVE-2017-9229, and CVE-2017-7890. We strongly encourage all PHP 5.6 users to upgrade to version 5.6.31, all PHP 7.0 users …
EasyApache 12 July 2017 Maintenance Release Read More »
cPanel & WHM version 58 will reach End of Life in 1 month, at the end of July, 2017. cPanel & WHM versions 56 and 60 will also reach End of Life at the end of October, 2017. In accordance with our EOL policy (https://go.cpanel.com/longtermsupport), when a version of cPanel …
cPanel & WHM Version 58 will reach EOL in 1 Month Read More »
cPanel & WHM version 58 will reach End of Life at the end of July, 2017, and will no longer be supported by cPanel except when upgrading to a supported version. In accordance with our EOL policy (https://go.cpanel.com/longtermsupport), 58 will continue functioning on servers where it is already installed. However, …
cPanel & WHM Version 58 will reach End of Life July, 2017 Read More »
cPanel TSR-2017-0003 Full Disclosure SEC-234 Summary Horde MySQL to SQLite conversion can leak database password. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 2.2 CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N Description If the Horde MySQL to SQLite conversion script requires a password reset on the MySQL database, the new password was passed …
cPanel TSR-2017-0003 Full Disclosure Read More »
We are delaying the cPanel TSR-2017-0003 Disclosure for an additional 24 hours. The Disclosure will now be published May 17, 2017.
cPanel TSR-2017-0003 Disclosure Delay Read More »
cPanel TSR-2017-0003 Announcement cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores …
cPanel TSR-2017-0003 Announcement Read More »
cPanel, Inc. has released cPanel & WHM version 64 to the STABLE tier. Below are just a few of the new features you will see! API Authentication tokens API tokens are the first step in revamping our remote authentication system, and doing away with AccessHashes. You can now easily create, manage, …
cPanel & WHM Version 64 now in the STABLE Tier Read More »
In December 2016, the cPanel Security Team became aware of potential vulnerabilities in cPanel & WHM following an investigation of the hints provided in the Shadow Brokers / Equation Group leaks. During our investigation, we found several vulnerabilities in cgiecho and cgiemail, one of which could be leveraged for remote …
cPanel Security Team: Cgiemail (CVE-2017-5613) Read More »
SUMMARY cPanel, Inc. has released updated RPMs for EasyApache 4 on April 18, 2017, with PHP versions 7.0.18 and 7.1.4. This release addresses vulnerabilities related to CVE-2017-7272. We strongly encourage all PHP 7.0 users to upgrade to version 7.0.18 and all PHP 7.1 users to upgrade to version 7.1.4. AFFECTED …
EasyApache 18 April 2017 Maintenance Release Read More »
SUMMARY cPanel, Inc. has released updated RPMs for EasyApache 4 on April 18, 2017, with PHP versions 7.0.18 and 7.1.4. This release addresses vulnerabilities related to CVE-2017-7272. We strongly encourage all PHP 7.0 users to upgrade to version 7.0.18 and all PHP 7.1 users to upgrade to version 7.1.4. AFFECTED …
EasyApache 18 April 2017 Maintenance Release Read More »
