OCT
29

cPanel & WHM Version 84 now in RELEASE!

We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 84 to the RELEASE tier! cPanel & WHM Version 84 introduces a slew of new tools and improvements to the product. Now including PowerDNS for DNS clustering, DNSSEC improvements, an overhauled Apache Configuration file, and multiple interface updates, cPanel …
Original author: Phil Hodges
  425 Hits

Copyright

© Cpanel

425 Hits
OCT
29

cPanel Announces Its Newest Partnership With Linode

cPanel Announces Its Newest Partnership With Linode

October 29, 2019

cPanel, L.L.C., the Hosting Platform of Choice, announces its newest partnership with Linode, allowing simplified server management by providing access to cPanel & WHM® on Linode.

Houston, Texas, October 29, 2019 – cPanel is excited to announce a new partnership with independent open cloud provider Linode. cPanel & WHM is now available directly from the Linode Cloud Manager. 

Interfacing seamlessly with CentOS7, the partnership brings together the simplicity and intuitiveness of cPanel & WHM with the reliability of Linux®. As a result, creating new websites and hosting environments is faster and easier than ever. cPanel & WHM on Linode allows users to access the full suite of robust cPanel features and world-class customer service. Users can not only manage their web hosting, they can also easily manage webmail, forwarding, email authentication, and handle spam all in one place. 

Continue reading
  484 Hits

Copyright

© Cpanel

484 Hits
OCT
23

EasyApache 4 Oct 23 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on Slack, Discord, or Reddit to talk about this update and much more. 2019-10-23 ea-apache2-config EA-8329: Fix error in phpfpm cleanup script. ea-tomcat85 EA-8702: Update ea-tomcat85 to 8.5.47, drop 8.5.46. …
Original author: Phil Hodges
  413 Hits

Copyright

© Cpanel

413 Hits
OCT
09

EasyApache Oct 9 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! This release includes some updates to ea-ruby24 and various CVEs. Please review and then join us on Slack, Discord, or Reddit to talk about this update and much more. 2019-10-9 ea-ruby24 EA-8682: Update Ruby to 2.4.9, drop 2.4.7 (with …
Original author: Phil Hodges
  424 Hits

Copyright

© Cpanel

424 Hits
OCT
07

cPanel & WHM Version 84 Now in CURRENT!

We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 84 to the CURRENT tier! cPanel & WHM Version 84 introduces a slew of new tools and improvements to the product. Now including PowerDNS for DNS clustering, DNSSEC improvements, an overhauled Apache Configuration file, and multiple interface updates, cPanel …
Original author: Phil Hodges
  424 Hits

Copyright

© Cpanel

424 Hits
OCT
02

EasyApache 4 Oct 2 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! This release includes updates a number of PHP versions, libcurl, ea-tomcat85, openssl, apache2-config and more! Join us on SlackDiscord, or Reddit to talk about this update and much more.

• yum-plugin-universal-hooks
     ZC-5357: skip duplicate members to avoid running a hook more than once for no reason

• scl-php54
• scl-php55
• scl-php56
• scl-php70
• scl-php71
• scl-php72
• scl-php73
     EA-8549: Build php-fpm with pcntl

• libcurl
     EA-8649: Update libcurl from v7.65.3 to v7.66.0

• ea-tomcat85
      EA-8645: Update spec file to use %{version} in source file

Continue reading
  521 Hits

Copyright

© Cpanel

521 Hits
SEP
25

cPanel(R), the Hosting Platform of Choice, Announces a New Technology Partnership With Alibaba Cloud – cPanel & WHM(R) Are Now Available in the Alibaba Cloud International Marketplace

cPanel®, the Hosting Platform of ChoiceTM, announces a new technology partnership with Alibaba Cloud. cPanel & WHM® is immediately available in the Alibaba Cloud International Marketplace.

Houston, Texas, September 2019 – cPanel is excited to announce a new technology partnership with Alibaba Cloud. cPanel & WHM is immediately available in the Alibaba Cloud International Marketplace.

Established in 2009, Alibaba Cloud, the data intelligence backbone of Alibaba Group, is among the world’s top three IaaS providers, according to Gartner. It is also the largest provider of public cloud services in China, according to IDC. Alibaba Cloud provides a comprehensive suite of cloud computing services to businesses worldwide, including merchants doing business on Alibaba Group marketplaces, start-ups, corporations, and public services. The Alibaba Cloud International Marketplace offers a variety of pre-installed and secure software images on their Elastic Compute Service (ECS). 

Integrating cPanel & WHM’s robust toolset and world-class support with Alibaba Cloud is a strategic next step for cPanel as it continues to expand its global presence. By partnering with Alibaba Cloud and making cPanel & WHM readily available, our customers can quickly deploy resources and grow their businesses on highly scalable and global infrastructure.

“We’re excited to partner with Alibaba Cloud–a leading Cloud provider to extend the global reach of cPanel and WHM. Alibaba’s strong presence across Asia provides our customers the opportunity to grow alongside cPanel in the global community,” said Todd Mitchell, Chief Operating Officer, cPanel, a WebPros company.

Continue reading
  479 Hits

Copyright

© Cpanel

479 Hits
SEP
17

cPanel TSR-2019-0005 Full Disclosure

Yesterday cPanel released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. Below is the full disclosure of the changes included in that update.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

SEC-528

Summary

Continue reading
  428 Hits

Copyright

© Cpanel

428 Hits
SEP
17

EasyApache 4 Sept 17 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some of the highlights below, and then join us on SlackDiscord, or Reddit to talk about this update and much more.

2019-9-4

yum-plugin-universal-hooks
     ZC-5357: skip duplicate members to avoid running a hook more than once for no reasonscl-php54scl-php55scl-php56scl-php70scl-php71scl-php72scl-php73
     EA-8549: Build php-fpm with pcntllibcurl
     EA-8649: Update libcurl from v7.65.3 to v7.66.0ea-tomcat85
     EA-8645: Update spec file to use %{version} in source fileea-openssl
     EA-8648: Update ea-openssl from v1.0.2s to v1.0.2tea-apache2-config
     EA-8591: Stop letting over-quota errors prevent creation of the session directory

This release includes a security patch that has been issued a fix for a CVE (Common Vulnerabilities and Exposures), the details of which are included below.

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with libcurl version 7.66.0 and OpenSSL version 1.0.2t. This release addresses vulnerabilities related to CVE-2019-5481, CVE-2019-5482, CVE-2019-1547, CVE-2019-1563, and CVE-2019-1552. We strongly encourage all libcurl users to upgrade to version 7.66.0 and all OpenSSL users to upgrade to version 1.0.2t.

AFFECTED VERSIONS
All versions of libcurl through 7.65.3
All versions of OpenSSL through 1.0.2s


SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

Continue reading
  500 Hits

Copyright

© Cpanel

500 Hits
SEP
16

cPanel TSR-2019-0005 Announcement

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated these updates as having CVSSv3 scores ranging from 4.7 to 8.0.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

RELEASES

The following cPanel & WHM versions address all known vulnerabilities:

Continue reading
  502 Hits

Copyright

© Cpanel

502 Hits
SEP
04

EasyApache 4 Sept 4 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Included are updates to multiple PHP versions, ea-tomcat85, ea-nodejs10, and a CVE announcement. Please join us on Slack, Discord, or Reddit to talk about this update and much more. 2019-9-4 scl-php71 EA-8634: Update scl-php71 to 7.1.32, drop 7.1.31. scl-php71-meta …
Original author: Phil Hodges
  415 Hits

Copyright

© Cpanel

415 Hits
AUG
29

cPanel & WHM Version 80 Now EOL

With last week’s move to STABLE for Version 82, cPanel & WHM Version 80 has reached End of Life. This version will now only be supported by cPanel when upgrading to a supported version.

In accordance with our EOL policy, Version 80 will continue to function on servers where it is already installed. The last release of cPanel & WHM Version 80, 80.0.24, will remain on our mirrors indefinitely. However, no further updates, including fixes for known security flaws, will be provided for Version 80. Older releases of cPanel & WHM will be removed from our mirrors.

We recommend that all customers upgrade any existing installations of cPanel & WHM Version 80 to the most recent version of cPanel & WHM Version 82, which you can read about on https://releases.cpanel.net.

If your server setup complicates the process of upgrading to a supported version of cPanel & WHM (an upgrade blocker list is available at https://go.cpanel.net/blockers), then cPanel is here to help. Simply open a support ticket at https://tickets.cpanel.net/submit so that our knowledgable support team can provide recommendations, upgrade assistance, and more.


About cPanel, L.L.C.

Continue reading
  453 Hits

Copyright

© Cpanel

453 Hits
AUG
22

cPanel & WHM Version 82 now in STABLE!

We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 82 to the STABLE tier! As a reminder, this move also means that support for cPanel & WHM Version 80 has ended. Version 82 brings another round of speed and usability improvements for the product. API calls are up …
Original author: benny Vasquez
  408 Hits

Copyright

© Cpanel

408 Hits
AUG
21

EasyApache 4 Aug 21 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on SlackDiscord, or Reddit to talk about this update and much more.

• ea-apache2
     • EA-8612: Update ea-apache2 from v2.4.39 to v2.4.41
     • EA-8588: Added default RequestReadTimeout for mod_reqtimeout
           CVE-2019-9517
           CVE-2019-10081  
           CVE-2019-10098
           CVE-2019-10092
           CVE-2019-10097
           CVE-2019-10082

• ea-apache2-config
     • EA-8610: Adjust pecl patch for CloudLinux to skip if alt-php in use

• ea-nghttp2
     • EA-8611: Update ea-nghttp2 from v1.39.1 to v1.39.2
          CVE-2019-9511
          CVE-2019-9513

• ea-nodejs10
     • EA-8608: Update ea-nodejs10 from v10.16.1 to v10.16.2

Continue reading
  610 Hits

Copyright

© Cpanel

610 Hits
AUG
20

cPanel Unveils WebPros Summit 2019 (Formerly cPanel Conference) in Atlanta, September 23rd – 26th

cPanel® announces schedule for its 3-day WebProsTM Summit event and welcomes its exhibitors and sponsors.  

Houston, Texas – August 2019 – cPanel, LLC., the Hosting Platform of ChoiceTM, is pleased to announce the change of its annual conference to include the WebPros brands! Plesk®, WHMCS®, SolusVM will all join cPanel at the first annual WebPros Summit.

“It’s been an exciting couple of years for WebPros,” said Ken Power, Vice President of Product Development at cPanel. “Building on the success of the cPanel Conference by inviting the communities of Plesk, WHMCS, and SolusVM is the perfect next step!”

Monday, September 23rd: Certification Day

“The WebPros Summit will expand on the cPanel Conference in a couple of fundamental ways,” said Jesse Asklund, Director of Support at cPanel. “One of them will be to include a full day of certifications from a variety of industry-leading companies in hosting.”

Continue reading
  438 Hits

Copyright

© Cpanel

438 Hits
AUG
07

EasyApache 4 Aug 7 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on SlackDiscord, or Reddit to talk about this update and much more.

2019-8-7

php-cliEA-8537: Fix php version detection when cwd is a symlink.mod_ruid2ZC-5378: Do not call distiller if its does not exist.ea-tomcat85EA-8590: Fix syntax errors in user-init.shea-nodejs10EA-8592: Update ea-nodejs10 to 10.16.1, drop 10.16.0.ea-apache2-configEA-8572: Fixed typo in setting RLimitCPU and RLimitMEMphp71EA-8595: Update PHP 7.1 to 7.1.31, drop 7.1.30.php71-metaEA-8595: Update PHP 7.1 to 7.1.31, drop 7.1.30.php72EA-8593: Update PHP 7.2 to 7.2.21, drop 7.2.20.php72-metaEA-8593: Update PHP 7.2 to 7.2.21, drop 7.2.20.php73EA-8594: Update PHP 7.3 to 7.3.8, drop 7.3.7.php73-metaEA-8594: Update PHP 7.3 to 7.3.8, drop 7.3.7.

This release includes a security patch that has been issued a fix for a CVE (Common Vulnerabilities and Exposures), the details of which are included below.

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with PHP versions 7.1.31, 7.2.21, and 7.3.8. This release addresses vulnerabilities related to CVE-2019-11041 and CVE-2019-11042, plus other vulnerabilities with no number currently assigned. We strongly encourage all PHP 7.1 users to upgrade to version 7.1.31, all PHP 7.2 users to upgrade to version 7.2.21, and all PHP 7.3 users to upgrade to version 7.3.8.

AFFECTED VERSIONS
All versions of PHP 7.1 through 7.1.30
All versions of PHP 7.2 through 7.2.20
All versions of PHP 7.3 through 7.3.7


SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

Continue reading
  463 Hits

Copyright

© Cpanel

463 Hits
JUL
31

cPanel, the Hosting Platform of Choice, Announces Partnership with CloudLinux extending support for Linux Systems Based on RHEL 6 and CentOS 6

Houston, Texas, July 31, 2019 – cPanel® is excited to announce a partnership with CloudLinux to extend support for systems running Red Hat® Enterprise Linux® 6 and CentOS 6 by nearly 4 years.

Released in 2011, Red Hat Enterprise Linux (RHEL) 6 and CentOS 6 have been receiving only security updates since May of 2017. These operating systems will reach End of Life (EOL) in November of 2020. At that time, without security patches or bug fixes, hosting providers will be required to migrate their customers to avoid using an operating system that is vulnerable to attacks and malware. Additionally, websites hosting on those operating systems will lose compliance with data and system certifications such as SOC 2 and PCI DSS.

To mitigate this scenario and reduce maintenance burden for our community, cPanel and CloudLinux will work together to support CloudLinux OS 6 for cPanel & WHM users until June 30, 2024. Full details about this initiative can be found at cloudlinux.com.

“We are excited to work with CloudLinux to extend the lifecycle of CloudLinux OS 6. Our goals are to give the hosting industry a viable answer and more flexibility in their operations schedule. Hosting companies shouldn’t be required to choose between security and downtime for their customers,” said Ken Power, VP of Product Development for cPanel, L.LC.

Users of the hybrid kernel in CloudLinux OS 6 will effectively enjoy extended support of RHEL 6/CentOS 6 until 2024. By that time, hosting providers will be able to safely migrate directly to RHEL 8, skipping RHEL 7 deployment entirely. RHEL 8 and CentOS 8 will be supported until May 5, 2029. For enterprises and hosting companies running their systems on CloudLinux OS 6, this equates to fewer migrations and less administration.

Continue reading
  383 Hits

Copyright

© Cpanel

383 Hits
JUL
30

cPanel & WHM Version 82 now in RELEASE!

We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 82 to the RELEASE tier! Version 82 brings another round of speed and usability improvements for the product. API calls are up to 25% faster, and our software has been made even leaner, leading to a reduction in memory …
Original author: benny Vasquez
  339 Hits

Copyright

© Cpanel

339 Hits
JUL
24

EasyApache 4 – July 24 Release

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! This release includes updating LiteSpeed from Version 7.4 to 7.5. Join us on Slack, Discord, or Reddit to talk about this update and much more. 2019-7-24 ea-apache2-config EA-8573 – Removal of ea-php*-php package does not update .htaccess files libcurl …
Original author: benny Vasquez
  391 Hits

Copyright

© Cpanel

391 Hits
JUL
16

cPanel TSR-2019-0004 Full Disclosure

Yesterday cPanel released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. Below is the full disclosure of the changes included in that update.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

SEC-501

Summary
Demo account remote code execution via faulty URI dispatching.
Security Rating
cPanel has assigned this vulnerability a CVSSv3 score of 6.5 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L
Description
Errors in the dispatching logic for email autoconfiguration URIs allowed demo accounts to execute functions in the cpanel templating engine that are normally prohibited.
Credits
This issue was discovered by the cPanel Security Team.
Solution
This issue is resolved in the following builds:
11.80.0.22
11.78.0.34

Continue reading
  397 Hits

Copyright

© Cpanel

397 Hits
Advertisement