[Case 85429] Php 5.3 cve-2013-6420?

T

ThinIce

Well-Known Member
Apr 27, 2006
352
9
168
Disillusioned in England
cPanel Access Level
Root Administrator
Hi all

Unless I'm misreading, it looks like PHP 5.3.28 is imminent, in the meantime can the security team please comment on whether it is best to remove openssl from php? Redhat and others appear to have marked this critical...

Cheers
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,258
463
Hello :)

Internal case 85429 is open for the inclusion of PHP 5.3.28 with EasyApache. There is currently no specific time frame available for it's release. You can monitor the EasyApache change log at:

EasyApache - Change Log

Thank you.
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,258
463
EasyApache 3.22.25 has now been released. This includes the inclusion of PHP 5.3.28 (CVE-2013-6420 and CVE-2013-4073).

Thank you.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
U Severe attack case via POST /admin/ HTTP/1.1 Security 7
7 Fixed case CPANEL-37048: Remove support for legacy mod security 2 configuration. Security 7
Spirogg just incase anyone having issues with auto SSL Currently, there are some known issues with Sectigo's certificate Issuing platform. Security 1
J SOLVED AutoSSL Proxy Subdomain Validation [case CPANEL-18074] Security 3
L [Case CPANEL-13602] ModSecurity Logs Are Getting Huge With Logging Off Security 7
Similar threads
Severe attack case via POST /admin/ HTTP/1.1
Fixed case CPANEL-37048: Remove support for legacy mod security 2 configuration.
just incase anyone having issues with auto SSL Currently, there are some known issues with Sectigo's certificate Issuing platform.
SOLVED AutoSSL Proxy Subdomain Validation [case CPANEL-18074]
[Case CPANEL-13602] ModSecurity Logs Are Getting Huge With Logging Off
Top Bottom