We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 90 to the STABLE tier! This release brings some quality of life improvements, including a number of interface updates. Take a look at highlights for this version on our release site, or check out our full release notes. Then, join us on Discord, Reddit, or our Support Forums!

WHM Marketplace Interface Added

We are introducing the WHM Marketplace in cPanel & WHM Version 90. This feature allows the user to install, manage, and purchase additional third-party licenses and products for their account. | Read More

cPanel Application Manager Interface Now Runs on Servers with Nginx

We are adding support for Nginx to cPanel’s Application Manager interface. You can use this interface to manage your applications on servers that run Nginx. Please note that NGINX is experimental. |Read More

Slack® Option Now Available as Communication Type

You can now send system notifications to one or more Slack Webhooks. Specify and test priority of your Webhooks with WHM’s Basic WebHost Manager Setup interface (WHM >> Home >> Server Configuration >> Basic WebHost Manager Setup) and WHM’s Contact Manager interface (WHM >> Home >> Server Contacts >> Contact Manager) | Read More

More Information

Detailed information about all cPanel & WHM versions can be found in the Release Notes. The cPanel Release site provides an overview of the latest features and updates cPanel & WHM has to offer, including highlights of previous versions of cPanel & WHM.

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on Discord or Reddit to talk about this update and much more.

2020-10-7

scl-php72

scl-php72-meta

scl-php73

scl-php73-meta

ea-php74

ea-php74-meta

This release includes a security patch that has been issued a fix for a CVE (Common Vulnerabilities and Exposures), the details of which are included below.

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with PHP versions 7.4.11, 7.3.23, and 7.2.34. This release addresses vulnerabilities related to CVE-2020-7070 and CVE-2020-7069. We strongly encourage all PHP 7.4 users to upgrade to version 7.4.11, all PHP 7.3 users to upgrade to version 7.3.23, and all PHP 7.2 users to upgrade to version 7.2.34.

AFFECTED VERSIONS
All versions of PHP 7.4 through 7.4.10.
All versions of PHP 7.3 through 7.3.22.
All versions of PHP 7.2 through 7.2.33.

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

cPanel has an unscheduled release for version 90 of cPanel & WHM. This update provides a targeted change to address a security concern with the cPanel & WHM product. This is currently available to all customers via the standard update system.

cPanel has rated this update as having a CVSSv3 score of 5.6.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

RELEASES

SEC-566

Summary

Self-XSS vulnerability in the WHM Edit DNS Zone interface.

Security Rating

cPanel has assigned this vulnerability a CVSSv3 score of 4.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

Description

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated these updates as having CVSSv3 scores ranging from 4.7 to 5.5.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

RELEASES

We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 90 to the RELEASE tier! This release brings some quality of life improvements, including a number of interface updates. Take a look at highlights for this version on our release site, or check out our full release notes. Then, join us on Discord, Reddit, or our Support Forums!

WHM Marketplace Interface Added

We are introducing the WHM Marketplace in cPanel & WHM Version 90. This feature allows the user to install, manage, and purchase additional third-party licenses and products for their account. | Read More

cPanel Application Manager Interface Now Runs on Servers with Nginx

We are adding support for Nginx to cPanel’s Application Manager interface. You can use this interface to manage your applications on servers that run Nginx. Please note that NGINX is experimental. |Read More

Slack® Option Now Available as Communication Type

You can now send system notifications to one or more Slack Webhooks. Specify and test priority of your Webhooks with WHM’s Basic WebHost Manager Setup interface (WHM >> Home >> Server Configuration >> Basic WebHost Manager Setup) and WHM’s Contact Manager interface (WHM >> Home >> Server Contacts >> Contact Manager) | Read More

More Information

Detailed information about all cPanel & WHM versions can be found in the Release Notes. The cPanel Release site provides an overview of the latest features and updates cPanel & WHM has to offer, including highlights of previous versions of cPanel & WHM.

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on Discord or Reddit to talk about this update and much more.

2020-8-12

ea-apache2

ea-php74

scl-php73

scl-php72

libcurl

scl-ruby24-passenger

This release includes a security patch that has been issued a fix for a CVE (Common Vulnerabilities and Exposures), the details of which are included below.

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with Apache version 2.4.46 and PHP versions 7.4.9, 7.3.21, and 7.2.33. This release addresses vulnerabilities related to CVE-2020-7068, CVE-2020-11984, and CVE-2020-11993. We strongly encourage all Apache 2.4 users to upgrade to version 2.4.46, all PHP 7.4 users to upgrade to version 7.4.9, all PHP 7.3 users to upgrade to version 7.3.21, and all PHP 7.2 users to upgrade to version 7.2.33.

AFFECTED VERSIONS
All versions of Apache through 2.4.43. (Apache versions 2.4.44 and 2.4.45 were not released.)
All versions of PHP 7.4 through 7.4.8.
All versions of PHP 7.3 through 7.3.20.
All versions of PHP 7.2 through 7.2.32.

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 90 to the CURRENT tier! This release brings some quality of life improvements, including a number of interface updates. Take a look at highlights for this version on our release site, or check out our full release notes. Then, join us on Discord, Reddit, or our Support Forums!

WHM Marketplace Interface Added

We are introducing the WHM Marketplace in cPanel & WHM Version 90. This feature allows the user to install, manage, and purchase additional third-party licenses and products for their account. | Read More

cPanel Application Manager Interface Now Runs on Servers with Nginx

We are adding support for Nginx to cPanel’s Application Manager interface. You can use this interface to manage your applications on servers that run Nginx. Please note that NGINX is experimental. |Read More

Slack® Option Now Available as Communication Type

You can now send system notifications to one or more Slack Webhooks. Specify and test priority of your Webhooks with WHM’s Basic WebHost Manager Setup interface (WHM >> Home >> Server Configuration >> Basic WebHost Manager Setup) and WHM’s Contact Manager interface (WHM >> Home >> Server Contacts >> Contact Manager) | Read More

More Information

Detailed information about all cPanel & WHM versions can be found in the Release Notes. The cPanel Release site provides an overview of the latest features and updates cPanel & WHM has to offer, including highlights of previous versions of cPanel & WHM.

We are happy to announce that cPanel, L.L.C. has released cPanel & WHM Version 90 to the EDGE tier! This release brings some quality of life improvements, including a number of interface updates. Take a look at highlights for this version, or check out our full release notes. Then, join us on Discord, Reddit, or our Support Forums!

WHM Marketplace Interface Added

In cPanel & WHM Version 90 we are introducing the WHM Marketplace. This feature allows the user to install, manage, and purchase additional third-party licenses and products for their account. | Read More

cPanel Application Manager Interface Now Runs on Servers with Nginx

With cPanel & WHM Version 90, we are adding support for Nginx to cPanel’s Application Manager interface. You can use this interface to manage your applications on servers that run Nginx and require the ea-ruby24-mod_passenger Apache module. The system will install this module and other related modules when you install Nginx. For more information, read our Nginx documentation. |Read More

Slack® Option Now Available as Communication Type

cPanel & WHM Version 90 introduces the ability to send system notifications through one or more Slack WebHooks. You can specify Slack WebHooks in WHM’s Basic WebHost Manager Setup interface (WHM >> Home >> Server Configuration >> Basic WebHost Manager Setup) and test and set the priority for the Slack WebHooks in WHM’s Contact Manager interface (WHM >> Home >> Server Contacts >> Contact Manager). | Read More

More Information

Detailed information about all cPanel & WHM versions can be found in the Release Notes. The cPanel Release site provides an overview of the latest features and updates cPanel & WHM has to offer, including highlights of previous versions of cPanel & WHM.

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated these updates as having CVSSv3 scores ranging from 4.3 to 8.8.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

RELEASES

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on Discord or Reddit to talk about this update and much more.

2020-7-15

ea-libicu

ea-freetds

ea-php74

scl-php72

scl-php73

ea-tomcat85

This release includes a security patch that has been issued a fix for a CVE (Common Vulnerabilities and Exposures), the details of which are included below.

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with PHP versions 7.4.8, 7.3.20, and 7.2.32 and Tomcat version 8.5.57. This release addresses vulnerabilities related to CVE-2020-8169, CVE-2020-13934 and CVE-2020-13935. We strongly encourage all PHP 7.4 users to upgrade to version 7.4.8, all PHP 7.3 users to upgrade to version 7.3.20, all PHP 7.2 users to upgrade to version 7.2.32, and all Tomcat users to upgrade to version 8.5.57.

AFFECTED VERSIONS
All versions of PHP 7.4 through 7.4.7.
All versions of PHP 7.3 through 7.3.19.
All versions of PHP 7.2 through 7.2.31.
All version of Tomcat 8.5 through 7.5.56.

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs: