JAN
01

cPanel & WHM Version 70 EOL in 3 Months

The current LTS (Long Term Support) version, cPanel & WHM version 70, will reach End of Life at the end of March 2019. At that time, Version 70 will no longer be supported by cPanel except when upgrading to a supported version. We recommend that all customers migrate any existing installations of cPanel & WHM version 70 to a supported version of cPanel & WHM before that date.

In accordance with our EOL policy (https://go.cpanel.net/longtermsupport), 70 will continue functioning on servers where it is already installed. However, no further updates, including security fixes and installations, will be provided for 70 once it reaches End of Life.

You can read about all the changes and new features that have been added since cPanel & WHM Version 70 on https://releases.cpanel.net. Version 78, set to be released in January 2019, will be the only version to enter the LTS tier in 2019.

If your server setup complicates the process of migrating to a newer version of cPanel & WHM (a list of upgrade blockers is available at https://go.cpanel.net/blockers), then the cPanel support team is here to help! Simply open a support ticket at https://tickets.cpanel.net/submit so that our knowledgeable support team can provide recommendations, migration assistance, and more.

For the PGP-Signed version of this announcement please see 70 EOL in 3 Months-signed.

Original author: benny Vasquez
  1016 Hits

Copyright

© Cpanel

1016 Hits
DEC
25

Reminder: cPanel & WHM Version 74 now EOL

As of cPanel & WHM Version 76’s move to STABLE on December 18th, cPanel & WHM Version 74 has reached End of Life and will no longer be supported by cPanel except when upgrading to a supported version.

In accordance with our EOL policy (https://go.cpanel.net/longtermsupport), 74 will continue functioning on servers where it is already installed. The last release of cPanel & WHM version 74, 74.0.12, will remain on our mirrors indefinitely. However, no further updates, such as security fixes and installations, will be provided for 74. Older releases of cPanel & WHM 74 have been removed from our mirrors.

We recommend that all customers migrate any existing installations of cPanel & WHM Version 74 to the most recent version of cPanel & WHM 76, which you can read about on https://releases.cpanel.net.

If your server setup complicates the process of migrating to a newer version of cPanel & WHM (a list of upgrade blockers is available at https://go.cpanel.net/blockers), then cPanel is here to help. Simply open a support ticket at https://tickets.cpanel.net/submit so that our knowledgeable support team can provide recommendations, migration assistance, and more.

For the PGP-Signed version of this announcement please see 2018-12-25 74 EOL Reminder – signed.

Original author: benny Vasquez
  1342 Hits

Copyright

© Cpanel

1342 Hits
DEC
18

cPanel & WHM Version 76 now in STABLE

We are happy to announce that cPanel, Inc. has released cPanel & WHM Version 76 to the STABLE tier! Take a look at highlights on our release site, or check out the full release notes for v76. Then, join us on Slack, Discord, or Reddit to talk about all the exciting improvements.

Improved WHM Experience

In Version 76 we have added a streamlined setup process for cPanel & WHM servers, as well as a brand new homepage for WHM. This improved user experience eliminates the extra steps for most users and leaves only the most useful interfaces during the setup process, welcoming new users, while retaining the power more experienced users like.

More Information

Check out the cPanel Release site to see an overview of the latest features and updates cPanel & WHM has to offer! All of the details about all cPanel & WHM Version 76 features can be found in the Release Notes.

To ensure that you receive up-to-date product news from cPanel, we encourage you to subscribe to the Product and Security updates mailing lists: cPanel Mailing List.

Original author: benny Vasquez
  950 Hits

Copyright

© Cpanel

950 Hits
DEC
17

EasyApache 3 2018-12-17 Security Release

SUMMARY
cPanel, L.L.C. has published EasyApache 3.36.11 with PHP version 5.6.39. This release addresses vulnerabilities related to CVE-2018-19518 and CVE-2018-19935. We strongly encourage all PHP 5.6 users to upgrade to version 5.6.39.

AFFECTED VERSIONS

All versions of PHP 5.6 through 5.6.38

SECURITY RATING

The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

Continue reading
  959 Hits

Copyright

© Cpanel

959 Hits
DEC
11

EasyApache 4 2018-12-11 Security Release

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with PHP versions 5.6.39, 7.0.33, 7.1.25, and 7.2.13 This release addresses vulnerabilities related to CVE-2018-19518 and CVE-2018-19935. We strongly encourage all PHP 5.6 users to upgrade to version 5.6.39, all PHP 7.0 users to upgrade to version 7.0.33, all PHP 7.1 users to upgrade to version 7.1.25, and all PHP 7.2 users to upgrade to version 7.2.13.

AFFECTED VERSIONS
All versions of PHP 5.6 through 5.6.38
All versions of PHP 7.0 through 7.0.32
All versions of PHP 7.1 through 7.1.24
All versions of PHP 7.2 through 7.2.12

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

CVE-2018-19518 – MEDIUM
PHP 5.6.39
Fixed bug in IMAP module related to CVE-2018-19518

PHP 7.0.33
Fixed bug in IMAP module related to CVE-2018-19518

Continue reading
  1303 Hits

Copyright

© Cpanel

1303 Hits
DEC
05

EasyApache 4 2018-11-14 Maintenance Update

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with OpenSSL version 1.0.2q on December 5, 2018. This release addresses vulnerabilities related to CVE-2018-5407 and CVE-2018-0734. We strongly encourage all OpenSSL users to update to version 1.0.2q.

AFFECTED VERSIONS
All versions of OpenSSL through OpenSSL 1.0.2p

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

CVE-2018-5407 – MEDIUM
OpenSSL 1.0.2q
Fixed bug related to CVE-2018-5407

CVE-2018-0734 – MEDIUM
OpenSSL 1.0.2q
Fixed bug related to CVE-2018-0734

Continue reading
  1358 Hits

Copyright

© Cpanel

1358 Hits
NOV
20

cPanel TSR-2018-0006 Full Disclosure

cPanel TSR-2018-0006 Full Disclosure

SEC-366

Summary

PostgreSQL password changes performed in an insecure manner.

Security Rating

Continue reading
  877 Hits

Copyright

© Cpanel

877 Hits
NOV
19

cPanel TSR-2018-0006 Announcement

cPanel TSR-2018-0006 Announcement

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated these updates as having CVSSv3 scores ranging from 4.7 to 7.8.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

Continue reading
  1100 Hits

Copyright

© Cpanel

1100 Hits
NOV
14

EasyApache 4 2018-11-14 Maintenance Update

The EasyApache team has published updates to the EasyApache 4 repository. EasyApache 4 does not use versioning and organizes changes by date only.

2018-11-14

ea-tomcat85EA-7998 – Tomcat Manager menu is not searchable in WHM libcurlEA-7983 – ssh2 EA4 module addition with pecl breaks and requires manual package install of libssh2 scl-phalconEA-7995 – Add macro for scl-php72 to add Phalcon and update to 3.4.1 scl-php71EA-8004 – Update to PHP 7.1.24, drop 7.1.23Cleaned up the patch filesscl-php71-metaEA-8005 – Update PHP 7.1 Meta Package to 7.1.24, drop 7.1.23scl-php72EA-8000 – Update to PHP to 7.2.12, drop 7.2.11Cleaned up the patch filesscl-php72-metaEA-8001 – Update PHP Meta Package to 7.2.12, drop 7.2.11

More Information

Check out the Release notes and the 2018 EasyApache 4 Changelog. All of the details about all this release can be found in the EasyApache 4 Release Notes.

To ensure that you receive up-to-date product news from cPanel, we encourage you to subscribe to the Product and Security updates mailing lists: cPanel Mailing List.

Original author: benny Vasquez
  1050 Hits

Copyright

© Cpanel

1050 Hits
NOV
07

EasyApache 4 2018-11-07 Security Release

SUMMARY
cPanel, L.L.C. has updated RPMs for EasyApache 4 with cURL version 7.62.0. This release addresses vulnerabilities related to CVE-2018-16839, CVE-2018-16840, and CVE-2018-16842. We strongly encourage all cURL users to update to version 7.62.0.

AFFECTED VERSIONS
All versions of cURL through cURL 7.61.0

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

CVE-2018-16839 – MEDIUM
cURL 7.62.0
Fixed bug related to CVE-2018-16839

CVE-2018-16840 – MEDIUM
cURL 7.62.0
Fixed bug related to CVE-2018-16840

Continue reading
  1067 Hits

Copyright

© Cpanel

1067 Hits
NOV
06

cPanel & WHM Version 76 in RELEASE

We are happy to announce that cPanel, Inc. has released cPanel & WHM Version 76 to the RELEASE tier! Take a look at highlights on our release site, or check out the full release notes for v76. Then, join us on Slack, Discord, or Reddit to talk about all the exciting improvements.

Tomcat in EA4 and New Tomcat Manager Interface

In Version 76 we are releasing a completely overhauled and improved version of Apache Tomcat for EasyApache 4. With the new Tomcat Manager interface in WHM, system administrators can manage the Tomcat status of all users.

Git SSH Host Key Verification

When enabled, the system now automatically performs host key verification whenever cloning a new repository or making changes to a cloned repository, helping to prevent Man-in-the-Middle attacks.

Continue reading
  1003 Hits

Copyright

© Cpanel

1003 Hits
OCT
17

cPanel & WHM Version 76 to CURRENT

We are happy to announce that cPanel, Inc. has released cPanel & WHM Version 76 to the CURRENT tier! Take a look at the full release notes, then join us on Slack, Discord, or Reddit to talk about all the exciting improvements.

Apache PHP-FPM for Faster Websites

We are enabling PHP-FPM for Apache by default for all new installations of cPanel & WHM, allowing your websites to serve more visitors.

All UIs now using PHP 7.2!

We are upgrading the internal PHP Version in cPanel & WHM to the faster and more secure PHP 7.2.

Continue reading
  1033 Hits

Copyright

© Cpanel

1033 Hits
SEP
19

EasyApache 2018-09-19 Security Release

SUMMARY
cPanel, Inc. has updated RPMs for EasyApache 4 with PHP versions 5.6.38, 7.0.32, 7.1.22, and 7.2.10 and released EasyApache 3.36.8 with PHP version 5.6.38 on September 19, 2018. This release addresses vulnerabilities related to CVE-2018-17082. We strongly encourage all PHP 5.6 users to upgrade to versions 5.6.38, all PHP 7.0 users to upgrade to version 7.0.32, all PHP 7.1 users to upgrade to version 7.1.22, and all PHP 7.2 users to upgrade to version 7.2.10.

AFFECTED VERSIONS
All versions of PHP 5.6 through 5.6.37
All versions of PHP 7.0 through 7.0.31
All versions of PHP 7.1 through 7.1.21
All versions of PHP 7.2 through 7.2.9

SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

CVE-2018-17082 – MEDIUM
PHP 5.6.38
Fixed bug in Apache2 XSS related to CVE-2018-17082

PHP 7.0.32
Fixed bug in Apache2 XSS related to CVE-2018-17082

Continue reading
  1035 Hits

Copyright

© Cpanel

1035 Hits
SEP
18

cPanel TSR-2018-0005 Full Disclosure

cPanel TSR-2018-0005 Full Disclosure

SEC-409

Summary

ClamAV daemon can be shut off by any local user.

Security Rating

Continue reading
  1003 Hits

Copyright

© Cpanel

1003 Hits
SEP
17

cPanel TSR-2018-0005 Announcement

cPanel TSR-2018-0005 Announcement

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated these updates as having CVSSv3 scores ranging from 3.3 to 7.4.

Information on cPanel’s security ratings is available at https://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installations at your earliest convenience.

Continue reading
  886 Hits

Copyright

© Cpanel

886 Hits
SEP
13

cPanel, the Hosting Platform of Choice, is excited to announce the release of cPanel & WHM Version 74

cPanel, the Hosting Platform of Choice, is excited to announce the release of cPanel & WHM Version 74, which includes Automated Website Deployment using Git, drastically improved backup speeds, and the fastest and easiest free SSLs yet.

Houston, Texas – September 2018 cPanel & WHM® Version 74 is the third release of 2018 and includes improvements in many of cPanel & WHM’s most popular features.

Git Version Control allows users to easily create and manage Git repositories on their cPanel hosting account. Version 74 now includes the ability to automatically deploy sites and applications from a repository, making it even easier to host your applications on cPanel servers.

The development team has been hard at work over the last year to improve the speed and quality of cPanel’s Automated Backups. cPanel users benefit from up to 60% faster backups and restores. The File and Directory Restore interface for server administrators and hosting users, along with new and improved remote destinations, make cPanel’s backup system one of the most robust on the market.

AutoSSL and SSLs ordered through the cPanel Market Place will see a much higher success rate with this version. cPanel has improved its Domain Control Validation (DCV). DNS-Based validation and Ancestor-based (or primary-domain) validation reduce the work required of a user to get an SSL.

Continue reading
  827 Hits

Copyright

© Cpanel

827 Hits
SEP
11

Reminder: cPanel & WHM Version 72 now EOL

As of cPanel & WHM Version 74’s release to STABLE on September 4th, cPanel & WHM version 72 has reached End of Life and will no longer be supported by cPanel except when upgrading to a supported version.

In accordance with our EOL policy (https://go.cpanel.net/longtermsupport), 72 will continue functioning on servers where it is already installed. The last release of cPanel & WHM version 72, 72.0.12, will remain on our mirrors indefinitely. However, no further updates, such as security fixes and bug fixes, will be provided for 72. Older releases of cPanel & WHM 72 have been removed from our mirrors.

We recommend that all customers migrate any existing installations of cPanel & WHM Version 72 to the most recent version of cPanel & WHM 74, which you can read about on https://releases.cpanel.net.

If your server setup complicates the process of migrating to a newer version of cPanel & WHM (an upgrade blocker list is available at https://go.cpanel.net/blockers), then cPanel is here to help. Simply open a support ticket at https://tickets.cpanel.net/submit so that our knowledgeable support team can provide recommendations, migration assistance, and more.

For the PGP-Signed version of this announcement please see 72 EOL Reminder-signed

Original author: benny Vasquez
  1204 Hits

Copyright

© Cpanel

1204 Hits
SEP
05

cPConference Keynote, Events, and more Sponsors!

The 2018 cPanel Conference in Houston on October 2nd & 3rd, Announces the Tuesday Keynote, Evening Events, and Welcomes More Sponsors!

Houston, Texas – September 2018 – cPanel, L.L.C., the Hosting Platform of Choice, is pleased to announce an addition to the conference schedule! This year’s Tuesday Morning Keynote will be presented by Monty Munford! Monty brings 15 years experience in the mobile, web, and digital sectors. He writes for The Economist, MIT Tech Review, Mashable, TechCrunch, and Wired UK, and speaks on topics that impact technology industries around the world.

Monday night, WHMCS will be hosting a networking event at Chapman and Kirby, with free drinks and light bites. Tuesday, cPanel welcomes all of our attendees to the Irish Cowboy for an 80’s & 90’s themed party with live music by HipHopHurray! Wednesday night attendees only need to go to the fourth floor of the hotel to join us for game night. We’ll have board games and video games to help round out the week.

Over 200 people have already registered this year! All three evening events are included in the cost of an attendee ticket. The attendees who stay at the conference hotel and book their stay before September 8th receive a significant discount on the cost of accommodations.

“We are on track to again meet our goal of releasing four new versions this year, making continuing education more important than ever. Our annual conference provides training on the updates we’ve made this year, as well as insight into where we’re headed,” said Ken Power, Vice President of Product Development.

Continue reading
  772 Hits

Copyright

© Cpanel

772 Hits
SEP
04

cPanel & WHM Version 74 to STABLE!

We are happy to announce that cPanel, Inc. has released cPanel & WHM Version 74 to the STABLE tier! Version 74 includes updates for some of our biggest features. Take a look at the full release notes, then join us on Slack, Discord, or Reddit to talk about all the exciting improvements!

Protect your server’s reputation

The combination of the Monitor Recipients for Potential Spammers, and the Action Taken when Spammers Found additions to Tweak Settings will monitor outbound mail on a per-account basis, and allow webhosts to prevent negative impact from a compromised account.

Host Contact Info Shown to Visitors

To help avoid confusion for hosting clients that are looking for their webhost, we now display the hosting provider’s contact information on the Account Suspended and Default Webpage placeholder pages.

Continue reading
  866 Hits

Copyright

© Cpanel

866 Hits
AUG
29

EasyApache 2018-08-29 Security Release

SUMMARY
cPanel, Inc. has updated RPMs for EasyApache 4 with OpenSSL version 1.0.2p on August 29, 2018. This release addresses security vulnerabilities related to CVE-2018-0732 and CVE-2018-0737. We strongly encourage all OpenSSL users to update their version of OpenSSL.

AFFECTED VERSIONS
All versions of OpenSSL through 1.0.2o

SECURITY RATING

CVE-2018-0732 – MEDIUM
Fixed bug key agreement related to CVE-2018-0732

CVE-2018-0737 – MEDIUM
Fixed vulnerability in RSA Key generation algorithm related to CVE-2018-0737

Continue reading
  812 Hits

Copyright

© Cpanel

812 Hits
Advertisement