[Case 85429] Php 5.3 cve-2013-6420?

ThinIce

Well-Known Member
Apr 27, 2006
352
9
168
Disillusioned in England
cPanel Access Level
Root Administrator
Hi all

Unless I'm misreading, it looks like PHP 5.3.28 is imminent, in the meantime can the security team please comment on whether it is best to remove openssl from php? Redhat and others appear to have marked this critical...

Cheers
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
Hello :)

Internal case 85429 is open for the inclusion of PHP 5.3.28 with EasyApache. There is currently no specific time frame available for it's release. You can monitor the EasyApache change log at:

EasyApache - Change Log

Thank you.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
EasyApache 3.22.25 has now been released. This includes the inclusion of PHP 5.3.28 (CVE-2013-6420 and CVE-2013-4073).

Thank you.