cPanel TSR-2017-0002 Full Disclosure

SEC-208 Summary Addon domain conversion did not require a package for resellers. Security Rating cPanel has assigned this vulnerability a CVSSv3 score of 2.7 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L Description Previously, when you converted an addon domain to a normal account, it was not required that a reseller specify a package for the account creation. This allowed the reseller… Read more »

cPanel TSR-2017-0002 Announcement

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv3 scores ranging from 2.4 to 8.8. Information on cPanel’s… Read more »

EasyApache 21 February 2017 Maintenance Release

SUMMARY cPanel, Inc. has released EasyApache 3.34.12 with Apache version 2.2.32. This release addresses vulnerabilities related to CVE-2016-8743 and CVE-2016-5387. We strongly encourage all Apache 2.2 users to upgrade to version 2.2.32.   AFFECTED VERSIONS All versions of Apache 2.2 through version 2.2.31   SECURITY RATING The National Vulnerability Database (NIST) has given the following… Read more »

Ubuntu 16.04.1 LTS Now Available!

We’ve pleased to announce thatĀ Ubuntu 16.04.1 LTS is now available in our Cloud Server Manager. Ubuntu 16.04.1 LTS is also available on our Dedicated Servers

EasyApache 24 January 2017 Maintenance Release

cPanel, Inc. has released updated RPMs for EasyApache 4 on January 25, 2017, with PHP version 5.6.30, 7.0.15, and 7.1.1. This release addresses vulnerabilities related to CVE-2016-10161, CVE-2016-10162, CVE-2017-5340, CVE-2016-7479, CVE-2016-10158, CVE-2016-10159, and CVE-2016-10160. We strongly encourage all PHP 5.6 users to upgrade to version 5.6.30, all PHP 7.0 users to upgrade to version 7.0.15,… Read more »

cPanel TSR-2017-0001 Full Disclosure

cPanel TSR-2017-0001 Full Disclosure SEC-196 Summary Fixed password used for Munin MySQL test account. Security Rating cPanel has assigned this vulnerability a CVSSv2 score of 4.0 (AV:N/AC:L/Au:S/C:P/I:N/A:N) Description The Munin monitoring tool includes a plugin to check the status of the MySQL service. This plugin used a dedicated test MySQL user to provide this functionality…. Read more »

cPanel TSR-2017-0001 Announcement

cPanel TSR-2017-0001 Announcement cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv2 scores ranging from 2.1 to 6.8…. Read more »

New cPlicensing.net site is now live!

We decided to standardize cPlicensing.net by building the new site around our existing NDCHost.com design. Not only that but we also decided to redesign the cPlicensing.net logo using the same idea. We’ve pleased to announce that the new cPlicensing.net and logo are now live! Feel free to check it out and report any issues and/or… Read more »

cPanel TSR-2016-0001 Announcement

cPanel TSR-2016-0001 Announcement cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. cPanel has rated these updates as having CVSSv2 scores ranging from 2.1 to 10.0…. Read more »

EasyApache 3.26.6 released to address multiple CVE security issues!

cPanel, Inc. has released EasyApache 3.26.6 with PHP versions 5.4.32 and 5.5.16. This release addresses vulnerabilities CVE-2014-3538, CVE-2014-3587, CVE-2014-2497, CVE-2014-5120, CVE-2014-3597, CVE-2014-4670 and CVE-2014-4698. We encourage all PHP 5.4 users to upgrade to PHP version 5.4.32 and all PHP 5.5 users to upgrade to PHP version 5.5.16.   AFFECTED VERSIONS All versions of PHP 5.4… Read more »