Questions? Start a Support Ticket
User Registration
Customer Login

Knowledgebase

Portal Home > Knowledgebase > Articles Database > cPanel Security Advisory 8-21-2013 (PHP 5.5.2 - EasyApache)


cPanel Security Advisory 8-21-2013 (PHP 5.5.2 - EasyApache)




Posted by Patrick, 08-21-2013, 10:17 AM
Looks like another update was pushed out this morning with EasyApache to fix a bunch of security issues with PHP 5.5.2:
Posted by NetworkPanda, 08-21-2013, 10:53 AM
Which means that the 5.4 branch is also affected? If this is correct, it forces all PHP 5.3 and 5.4 hosts to update to PHP 5.5.x but some scripts are not ready for it yet, it will break a lot of sites.
Posted by Steven, 08-21-2013, 11:18 AM
Not exactly a new problem, it has existed for a while. https://wiki.php.net/rfc/strict_sessions Looks like they finally got around and made a proper fix.
Posted by WebHostDog, 08-21-2013, 01:02 PM
CloudLinux release updated PHP 5.4.x. The update includes fixes for security issues: including security issues CVE-2013-4113 and CVE-2013-4248. So got to be something ...
Posted by Steven, 08-21-2013, 02:06 PM
It is something, but its also well known old bugs that they finally fixed. Honestly most hosts need to start transitioning to 5.4 at least. Old scripts have problems but you also will lose 5.3 sec updates soon.
Posted by phinsup, 08-21-2013, 02:46 PM
They sent out the email regarding 5.4 yesterday. Hash: SHA512 SUMMARY The PHP development team announces the immediate availability of PHP 5.4.18. About 30 bugs were fixed, including security issues CVE-2013-4113 and CVE-2013-4248. All users of PHP are encouraged to upgrade to this release. cPanel has released EasyApache 3.22.5 with this updated version of PHP 5.4.18 to address this issue. AFFECTED VERSIONS All versions of PHP5 before 5.4.18 SECURITY RATING The National Vulnerability Database (NIST) has given the following severity rating of these CVEs: CVE-2013-4113 -- MEDIUM CVE-2013-4248 -- MEDIUM PHP 5.4.18
Posted by Steven, 08-21-2013, 03:04 PM
Yep, it was posted here: http://www.webhostingtalk.com/showthread.php?t=1296118


Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
Gnax & Cpanel backup ?? (Views: 635)
Reseller Hosting Required (Views: 764)
Need help in starting a hosting website! (Views: 753)
Least expensive reseller start ups (Views: 717)
[PowerVPS] Network Down (Views: 764)


Language:

Our Services

Client Menu

Legal

Terms of Service | Privacy Policy | Refund Policy | Affiliates
Copyright © 2015 DC International LLC in partnership with Bragin IT Solutions Inc. - All Rights Reserved.