cPanel Security Team: exim CVE-2016-1531

cPanel Security Team: exim CVE-2016-1531 Background Information On Wednesday, March 2, 2016, Exim announced a vulnerability in all versions of the Exim software. Impact According to Exim development: “All installations having Exim set-uid root and using ‘perl_startup’ are vulnerable to a local privilege escalation. Any user who can start an …

54 Now in STABLE Tier

Introducing cPanel & WHM 54 cPanel, Inc. has released cPanel & WHM software version 54, which is now available in the STABLE tier. In a departure from our usual version number, we’ve dropped the “11” from cPanel & WHM releases. This change provides increased clarity for our partners and users …

cPanel Security Team: glibc CVE-2015-7547

cPanel Security Team: glibc CVE-2015-7547 CVE-2015-7547 is a critical vulnerability in glibc affecting any versions greater than 2.9. The DNS client side resolver function getaddrinfo() used in the glibc library is vulnerable to a stack-based buffer overflow attack. This can be exploited in a variety of scenarios, including man-in-the-middle attacks, …

EasyApache 3.32.10 Released

SUMMARY cPanel, Inc. has released EasyApache 3.32.10 with PHP versions 5.5.32 and 5.6.18. This release addresses vulnerabilities related to CVE-2015-8383, CVE-2015-8386, CVE-2015-8387, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8393, and CVE-2015-8394. We strongly encourage all PHP 5.5 users to version 5.5.32, and all PHP 5.6 users to upgrade to version 5.6.18. AFFECTED VERSIONS …

11.48 Now EOL

cPanel & WHM software version 11.48 has now reached End of Life. In accordance with our EOL policy [http://go.cpanel.net/longtermsupport], 11.48 will continue functioning on servers. The last release of cPanel & WHM 11.48, 11.48.5.3, will remain on our mirrors indefinitely. However, no further updates, such as security fixes and installations, …