NOV
21

EasyApache 4 November 21 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4!  Take a look at some highlights below, and then join us on the cPanel Community Forums, Discord, or Reddit to talk about this update and much more. If you have additional questions, feel free to reach out on one of our social …

The post EasyApache 4 November 21 Release first appeared on cPanel Newsroom.
Original author: cPanel

Copyright

© Cpanel

NOV
16

EasyApache 4 November 16 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4!  Take a look at some highlights below, and then join us on the cPanel Community Forums, Discord, or Reddit to talk about this update and much more. If you have additional questions, feel free to reach out on one of our social …

The post EasyApache 4 November 16 Release first appeared on cPanel Newsroom.
Original author: cPanel

Copyright

© Cpanel

NOV
15

cPanel TSR-2022-0005 Full Disclosure

SEC-661

Summary

Fix test used by cpsrvd to check for PHP.

Security Rating

cPanel has assigned this vulnerability a CVSSv3.1 score of 4.1 CVSS3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:H

Continue reading

Copyright

© Cpanel

NOV
14

cPanel TSR-2022-0005 Announcement

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated this update as having a CVSSv3.1 scores from 3.3 to 9.0.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

RELEASES

Continue reading

Copyright

© Cpanel

NOV
09

EasyApache 4 November 9 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4!  Take a look at some highlights below, and then join us on the cPanel Community ForumsDiscord, or Reddit to talk about this update and much more. If you have additional questions, feel free to reach out on one of our social channels.

ea-nodejs16EA-11040: Update ea-nodejs16 from v16.18.0 to v16.18.1(CVE-2022-43548) DNS rebinding in –inspect via invalid octal IP address (Medium)ea-openssl11EA-11035: Update ea-openssl11 from v1.1.1q to v1.1.1sea-nginxEA-10670: Add better guards against bad userdata to configuration scriptEA-11004: Fix Passenger restart failures after rebootea-apache24-mod-passengerEA-11018: Fix Passenger instance registry directory for fresh installsEA-10997: Fix Passenger instance registry directory on Ubuntuea-php74ea-php74-metaEA-11038: Update ea-php74 from v7.4.32 to v7.4.33GD:Fixed bug #81739: OOB read due to insufficient input validation in imageloadfont(). (CVE-2022-31630)Hash:Fixed bug #81738: buffer overflow in hash_update() on long parameter. (CVE-2022-37454)

This release includes a security patch that has been issued a fix for a CVE (Common Vulnerabilities and Exposures), the details of which are included below.

SUMMARY
cPanel, L.L.C. has updated packages for EasyApache 4 with PHP version 7.4.33 and ea-nodejs16 version 16.18.1. This release addresses vulnerabilities related to CVE-2022-31630, CVE-2022-37454, and CVE-2022-43548. We strongly encourage all PHP 7.4 users to update to version 7.4.33 and all ea-nodejs16 users to update to version 16.18.1.

AFFECTED VERSIONS
All versions of PHP 7.4 through 7.4.32.
All versions of ea-nodejs16 through 16.18.0.

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

Continue reading

Copyright

© Cpanel

By accepting you will be accessing a service provided by a third-party external to https://www.divethewebcreations.biz/

Advertisement