cPanel & WHM 11.38 Change Log

11.38.2.23

2014-03-24
  • [security] Fixed case 85329: Sensitive information disclosed via multiple log files.
  • [security] Fixed case 86337: Injection of arbitrary DNS zonefile contents via cPanel DNS zone editors.
  • [security] Fixed case 87205: Open redirect vulnerability in FormMail -clone.
  • [security] Fixed case 88577: Arbitrary file overwrite via trackupload parameter.
  • [security] Fixed case 88793: External XML entity injection in WHM locale upload interface.
  • [security] Fixed case 89009: Arbitrary code execution for ACL limited resellers via WHM Activate Remote Nameservers interface.
  • [security] Fixed case 89057: Fix self-XSS vulnerability on reseller branding download page.
  • [security] Fixed case 89133: Fix self-stored XSS vulnerability in WHM Backup Configuration.
  • [security] Fixed case 89137: Fix self-XSS vulnerability in WHM Local XML Upload.
  • [security] Fixed case 89377: Arbitrary code execution for ACL limited resellers via WHM objcache.
  • [security] Fixed case 89729: Insufficient ACL checks in WHM Modify Account interface.
  • [security] Fixed case 89733: Injection of arbitrary data into cpuser configuration files via wwwacct.
  • [security] Fixed case 89789: Arbitrary code execution for ACL limited resellers via batch API.
  • [security] Fixed case 90001: Sensitive information disclosed via update-analysis tarballs.
  • [security] Fixed case 90213: Self XSS vulnerability in WHM MySQL Root Password interface.
  • [security] Fixed case 90225: Multiple self XSS vulnerabilities in CloudLinux LVE Manager.
  • [security] Fixed case 90249: Self XSS vulnerability in WHM Xferlog Tail.
  • [security] Fixed case 90257: Self XSS vulnerability in WHM Edit System Mail Preferences.
  • [security] Fixed case 90261: Stored XSS Vulnerability in WHM SSH Check.
  • [security] Fixed case 90265: Open mail relay via injection of FormMail -clone parameters.
  • [security] Fixed case 90289: Self XSS vulnerability in WHM Zone Editor.
  • [security] Fixed case 90773: Self-stored XSS vulnerability in cPanel Hotlink Protection.
  • [security] Fixed case 90777: Self-stored XSS vulnerability in Web Disk Accounts.
  • [security] Fixed case 90817: Self XSS vulnerability in listfmfiles.json.
  • [security] Fixed case 90837: Self-stored XSS vulnerability in Redirects.
  • [security] Fixed case 91253: Stored XSS vulnerability in cPAddons Moderation Requests.
  • [security] Fixed case 91457: Self XSS vulnerability in cPanel PHP Test.
  • [security] Fixed case 91461: Self XSS vulnerability in Entropy Banner Upload.
  • [security] Fixed case 91633: Self XSS vulnerability in Fetch Mail Archive.
  • [security] Fixed case 91677: Self-stored XSS vulnerability in cPanel Image Manager Scaler.
  • [security] Fixed case 91681: Self-stored XSS vulnerability in cPanel Image Manager Thumbnailer.
  • [security] Fixed case 91717: Self-XSS vulnerabilities in BoxTrapper _getaccountinfo/BoxTrapper_getemaildirs.
  • [security] Fixed case 91741: Arbitrary code execution via backup excludes.
  • [security] Fixed case 91973: Self XSS vulnerability in cPanel Image Manager Scaler.
  • [security] Fixed case 91977: Self XSS vulnerability in cPanel Image Manager Format Converter.
  • [security] Fixed case 91981: XSS Vulnerabilities in cPanel Image Manager Thumbnailer.
  • [security] Fixed case 92133: Self XSS vulnerability in Delete Private SSH Key.
  • [security] Fixed case 92157: Stored XSS vulnerability in FrontPage Install/Uninstall.
  • [security] Fixed case 92421: Self XSS vulnerability in Mail Settings Container AJAX.
  • [security] Fixed case 92489: SSH private key disclosure during key import process.
  • [security] Fixed case 92593: Reflected XSS vulnerability in Entropy Search.
  • [security] Fixed case 93089: Self XSS Vulnerability in Redirect Removal Confirm.
  • [security] Fixed case 93125: Self XSS Vulnerability in Default Website Page.
  • [security] Fixed case 94201: Insufficient validation allows password reset of arbitrary users.

11.38.2.17

2014-02-04
  • Fixed case 81125: Allow redirect to installed SSL hosts for wildcard certs.
  • Fixed case 83681: Allow MySQL upgrades even if mysql is disabled.
  • Fixed case 89825: Fix parking a domain through WHM.
  • Implemented case 84481: Update ioncube loader to 4.5.0.

11.38.2.16

2014-02-03
  • [security] Fixed case 84385: Arbitrary code execution as cpanel-horde user via cache file poisioning.
  • [security] Fixed case 84633: Fix multiple self XSS vulnerabilities in Cpanel::Htaccess.
  • [security] Fixed case 84877: Fix self XSS vulnerability in Initial Setup Wizard.
  • [security] Fixed case 84881: Fix stored XSS vulnerability in Set Default Address.
  • [security] Fixed case 84885: Fix XSS in /x3/mail/filters/editfilter.html.
  • [security] Fixed case 84893: Fix XSS vulnerabilities in BoxTrapper Configuration.
  • [security] Fixed case 84897: Fix self XSS vulnerabilities in HTTP Bandwidth View.
  • [security] Fixed case 84901: Fix stored XSS vulnerability in Image Thumbnailer.
  • [security] Fixed case 85029: Fix self XSS vulnerability in Import Addresses/Forwarders.
  • [security] Fixed case 85133: Fix stored XSS vulnerability in File Editor.
  • [security] Fixed case 85177: Fix multiple self XSS vulnerabilities in CGI Center.
  • [security] Fixed case 85229: Fix multiple self XSS vulnerabilities in PostgreSQL database deletion.
  • [security] Fixed case 85249: Fix XSS vulnerability in Add Postgres User to DB.
  • [security] Fixed case 85273: Fix self-XSS vulnerability in Hotlink Protection.
  • [security] Fixed case 85457: Fix self XSS vulnerability in BoxTrapper Verification.
  • [security] Fixed case 85461: Fix multiple self XSS vulnerabilities in Cpanel::Boxtrapper.
  • [security] Fixed case 85589: Fix XSS vulnerability in Tweak Settings.
  • [security] Fixed case 85981: Fix XSS vulnerability in WHM Add A Package interface.
  • [security] Fixed case 86017: Fix XSS vulnerability in Security Questions interfaces.
  • [security] Fixed case 86329: Fix stored XSS vulnerability in Edit MX Entry.
  • [security] Fixed case 86381: Disclosure of root's accesshash to ACL limited resellers via WHM xml-api.
  • [security] Fixed case 86453: Injection of arbitrary settings into cpuser files via account creation.
  • [security] Fixed case 86461: Overwriting of trusted inputs to third party hooks scripts.
  • [security] Fixed case 86857: Limited arbitrary file overwrite for ACL limited resellers via domain parking.
  • [security] Fixed case 87081: Fix self-XSS vulnerability in Redirects.
  • [security] Fixed case 87317: Arbitrary code execution as root for ACL limited resellers via cluster configuration interfaces.
  • [security] Fixed case 87421: Fix XSS vulnerability in code editor.
  • [security] Fixed case 87433: Injection of arbitrary settings into cpuser files via mxcheck setting.
  • [security] Fixed case 87437: ACL limited resellers allowed to disable digest authentication for arbitrary accounts.
  • [security] Fixed case 87457: Fix self-XSS vulnerability in cPAddons Feature Manager.
  • [security] Fixed case 87625: ACL limited resellers allowed to restore backups for the accounts they control.
  • [security] Fixed case 88061: Mis-assignment of IP addresses for ACL limited resellers via createacct.
  • [security] Fixed case 88093: Fix XSS vulnerability in Full Backup.
  • [security] Fixed case 88097: Fix XSS vulnerability in Restore Files.
  • [security] Fixed case 88129: Fix XSS vulnerability in Restore a MySQL Backup.
  • [security] Fixed case 88133: Fix XSS vulnerability in Restore Email Filters.
  • [security] Fixed case 88137: Fix XSS vulnerability in Full Backup.
  • [security] Fixed case 88141: Fix XSS vulnerability in IP Deny Manager.
  • [security] Fixed case 88145: Fix XSS vulnerability in IP Deny Manager.
  • [security] Fixed case 88149: Fix XSS vulnerability in IP Deny Manager index page.
  • [security] Fixed case 88153: Fix XSS vulnerability in Image Tools.
  • [security] Fixed case 88157: Fix XSS vulnerability in various pages that save files.
  • [security] Fixed case 88165: Fix XSS vulnerability in Legacy File Manager file extraction.
  • [security] Fixed case 88173: Fix XSS vulnerability in Legacy File Manager viewer.
  • [security] Fixed case 88181: Fix XSS vulnerability in FrontPage status listing.
  • [security] Fixed case 88209: Fix multiple XSS vulnerabilities in Cpanel::LeechProtect.
  • [security] Fixed case 88213: Fix XSS vulnerability in Network Tools.
  • [security] Fixed case 88229: Fix XSS vulnerability in Parked Domains.
  • [security] Fixed case 88253: Fix XSS vulnerability in PostgreSQL user removal.
  • [security] Fixed case 88257: Fix XSS vulnerability in Analog log viewer.
  • [security] Fixed case 88261: Fix XSS vulnerability in subdomain redirects.
  • [security] Fixed case 88265: Fix XSS vulnerability in adding a subdomain.
  • [security] Fixed case 88269: Fix stored XSS vulnerability in cPAddons.
  • [security] Fixed case 88277: Fix XSS vulnerability in MySQL APIs.
  • [security] Fixed case 88281: Fix multiple XSS vulnerabilities in BoxTrapper queue search.
  • [security] Fixed case 88285: Fix XSS vulnerability in BoxTrapper::changestatus.
  • [security] Fixed case 88289: Fix XSS vulnerability in BoxTrapper::editmsg.
  • [security] Fixed case 88293: Fix XSS vulnerability in BoxTrapper::listmsgs.
  • [security] Fixed case 88297: Fix XSS vulnerability in BoxTrapper::messageaction.
  • [security] Fixed case 88301: Fix XSS vulnerability in BoxTrapper::resetmsg.
  • [security] Fixed case 88305: Fix stored XSS vulnerability in BoxTrapper::showemails.
  • [security] Fixed case 88309: Fix XSS vulnerability in BoxTrapper::showlog.
  • [security] Fixed case 88313: Fix XSS vulnerability in BoxTrapper::showmsg.
  • [security] Fixed case 88321: Fix XSS vulnerability in BoxTrapper::getboxconfdir.
  • [security] Fixed case 88325: Fix multiple XSS vulnerability in BoxTrapper.
  • [security] Fixed case 88341: Arbitrary code execution for ACL limited resellers during account creation.

11.38.2.15

2013-12-20
  • [security] Fixed case 84681: Arbitrary file read for ACL limited reseller accounts via XML-API.

11.38.2.13

2013-12-16
  • [security] Fixed case 63541: Arbitrary code execution via user supplied translatable phrases.
  • [security] Fixed case 69517: World-writable Counter directory allowed arbitrary code execution.
  • [security] Fixed case 71125: Arbitrary file ownership change via cPanel branding system.
  • [security] Fixed case 73125: After multiple security token failures, session credentials were not invalidated.
  • [security] Fixed case 73193: Unsafe disclosure of security token during session based login.
  • [security] Fixed case 74333: The session credentials were disclosed during reseller override logins.
  • [security] Fixed case 78045: Stored XSS vulnerability in WHM Daily Process Log screen.
  • [security] Fixed case 78089: Password disclosure during forced cPAddons upgrade.
  • [security] Fixed case 79277: Arbitrary file read vulnerability in WHM Edit DNS Zone interface.
  • [security] Fixed case 80633: Arbitrary file write via X3 countedit.cgi.
  • [security] Fixed case 81373: Bandmin passwd file stored with world-readable permissions.
  • [security] Fixed case 81377: Multiple XSS vulnerabilities found in Bandmin.
  • [security] Fixed case 81429: URL filtering flaws allowed access to restricted resources.
  • [security] Fixed case 81641: Path traversal flaw allows arbitrary code execution for restricted cPanel accounts.
  • [security] Fixed case 81885: Multiple self-XSS vulnerabilities found in cPanel.
  • [security] Fixed case 82309: Insecure storage of Logaholic session files was found.
  • [security] Fixed case 80113: cPHulk injection via crafted SSH connections.
  • [security] Fixed case 82725: XSS vulnerability found in YUI 2.
  • [security] Fixed case 82733: Database grant files stored with world-readable permissions.
  • [security] Fixed case 83929: A cross-account XSRF attack against reseller override logins was possible via goto_uri.
  • Fixed case 83501: Disallow \g in MySQL GRANT statements during account restores.

11.38.2.12

2013-10-25
  • [security] Fixed case 76541: Do not remove file name provided by user while cleaning up.
  • Fixed case 81125: Prevent hang on installation of service SSL.

11.38.2.11

2013-10-23
  • [security] Fixed case 69513: Create Logaholic directories with 700 permissions.
  • [security] Fixed case 74525: Prevent leaking of security token in Manage SSL Hosts interface.
  • [security] Fixed case 76085: Prevent virtual email accounts owned by a reseller from manipulating translations.
  • [security] Fixed case 76541: Remove only the temporary file when deleting unused file uploads.
  • [security] Fixed case 76549: Sanitize multipart POST data to prevent fake file uploads.
  • [security] Fixed case 76789: Create transfer logs with 0600 permissions.
  • [security] Fixed case 76869: Update Dovecot handling of checkpassword authentication for CVE-2013-6171.
  • [security] Fixed case 76941: Fix Cpanel::LogMeIn session expiration.
  • [security] Fixed case 78177: Patch mailman CGIs to run setuid mailman.
  • [security] Fixed case 78253: Fix WHM mod_userdir tweak compatibility with mod_ruid2.
  • [security] Fixed case 79133: Sanitize whitespace in SSL certificates before installation.
  • Implemented case 80245: Add cpanel-common-licenses RPM.
  • Implemented case 75937: Fix Apache 2.4.5+ proxy subdomains with SSL.
  • Implemented case 80745: Fixed Contact Customer Support link piping issue.

11.38.2.7

2013-09-10
  • Fixed case 75097: Don't install modules to cPanel perl using perlinstaller.
  • [security] Fixed case 76029: Update RoundCube to 0.9.3.
  • Fixed case 76205: Remove buttons to add and edit users through phpMyAdmin.
  • Fixed case 77013: Apply phpMyAdmin patch for large table export problem.
  • Fixed case 77285: phpMyAdmin: Fix import from sql query form.

11.38.2.6

2013-08-28
  • [security] Fixed case 68205: Update cPAddon configuration as the user.
  • [security] Fixed case 71265: Prevent shell execution in autorespond.
  • [security] Fixed case 71701: Fix arbitrary module load in cpaddons.pl.
  • [security] Fixed case 71705: Don't write corrupt data to cPAddons configuration.
  • [security] Fixed case 71709: Prevent HTML injection in cPAddons.
  • [security] Fixed case 71721: Fix several security issues with cPAddons.
  • [security] Fixed case 71725: Sanitize input when loading modules.
  • [security] Fixed case 71733: Prevent users from installing cPAddons as other users.
  • [security] Fixed case 73565: Save cpmove files with proper permissions.
  • [security] Fixed case 73585: Prevent corruption of httpd.conf through DocumentRoot.
  • [security] Fixed case 73609: Improve safety of account rearrange.
  • [security] Fixed case 73777: Encode user passwords in session files.
  • [security] Fixed case 74609: Prevent path traversal when reading nvdata.
  • Fixed case 74625: Fix locale XML reseller privilege escalation.
  • [security] Fixed case 75113: Only allow root to use the "stor" nvset paramater.
  • [security] Fixed case 75169: Sanitize module names before loading in cPAddons.
  • [security] Fixed case 75413: Don't let non-root users run cpaddons.pl.
  • [security] Fixed case 75417: Prevent an XSS attack in cpaddons_report.pl.
  • [security] Fixed case 75573: Prevent file manipulation when unsuspending account.
  • [security] Fixed case 75605: Prevent jailshell escape with two-arg open.
  • Fixed case 76137: Preserve random cookie when invalid security token used.
  • [security] Fixed case 76157: Prevent infinite loop in password encoding/decoding.
  • [security] Fixed case 76161: Don't use additional cookie for session file password encoding.

11.38.2.3

2013-08-23
  • Fixed case 72709: Update Roundcube to 0.9.2.
  • Fixed case 75017: Update phpMyAdmin from version #4.0.4.2 to version #4.0.5.
  • Fixed case 75085: Note that exporting large databases is broken in phpMyAdmin.

11.38.2.2

2013-08-15
  • Fixed case 64259: Allow creation of proxy subdomains without autodiscover.
  • Fixed case 70149: Fix account transfers with an empty tarroot.
  • Fixed case 74673: Allow an ssl host for the hostname to be installed on any ip on the server.
  • Fixed case 75065: Fix quota checking delay related to NFS.
  • Fixed case 75329: Restore the ability to disable security tokens.
  • Fixed case 75385: Properly restore mail by default on package restoration.

11.38.2.1

2013-08-12
  • Fixed case 71685: JSON::XS and SSL certificate encoding decoding failures.
  • Fixed case 73481: Fix misencoded Russian output.
  • [security] Fixed case 74209: Update phpMyAdmin 4 to 4.0.4.2.
  • Fixed case 74589: Display domain name when generating a certificate.
  • Fixed case 74597: Fix failure to install Perl module in cPanel.
  • Fixed case 74793: Fix additional phpMyAdmin 4 integration issues.
  • Fixed case 74961: Update Archive::Tar::Builder to 1.2.
  • Fixed case 74781: Packages: Fix trailing slash added to long file names.
  • Fixed case 74517: Packages: Correct handling of member names in LongLink blocks.

11.38.2.0

2013-08-06
  • Fixed case 61499: Wait to start RoR until after cpsrvd is started.
  • Fixed case 61909: Keep only one entry for each version in cp_schema_version table.
  • Fixed case 62489: Make PHP homeloader work with newer PHPs.
  • Fixed case 64209: Do not remove A record when deleting main MX entry using cPanel.
  • Fixed case 69149: Improve feature showcase error handling.
  • Fixed case 69689: Do not restore emails from subdomains when subdomains are not restored.
  • Fixed case 70201: Normalize IP display in WHM.
  • Fixed case 70401: Improve UI when checking backup destinations in WHM.
  • Fixed case 70513: Allow backups to WebDAV servers with non-DAV root.
  • Fixed case 70681: Make SSL's domain matching case-insensitive for ASCII domains.
  • Fixed case 70865: Allow calling safemkdir with an octal number.
  • Fixed case 70917: Fix remaining uses of old-style safemkdir calls.
  • Fixed case 70969: Fix 'restore mail config' option when restoring an account from a legacy backup.
  • Fixed case 70993: Properly unmount deleted mount paths for jailshell.
  • Fixed case 71157: Prevent duplicate virtfs mounts when /home is symlinked.
  • Fixed case 71205: Specify Options None when no options are enabled.
  • Fixed case 71213: Fix running exim under jailexec on CentOS 6.
  • Fixed case 71261: Fix typos in Cpanel/SSL/Domain.pm.
  • Fixed case 71321: Add branch name in email smoker title.
  • Fixed case 71405: Fix Roundcube upgrade when using SQLite.
  • Fixed case 71833: Prevent lock contention when updating Tweak Settings.
  • Fixed case 71881: Increased timeout for auto generated resellers.
  • Fixed case 71901: Do not apply rlimits on pigz, and improve error reporting.
  • Fixed case 72109: Update virtfs for jailed user when jailapache is turned on.
  • Fixed case 72201: Improve description of backup directory.
  • Fixed case 72257: Improve file cleanup when both daily and monthly need to run.
  • Fixed case 72681: Fix SSL Parser handling the text "key".
  • Fixed case 72693: Prevent zombies from accumulating during backups.
  • Fixed case 72705: Detect Tomcat 7 when modifying an account.
  • Fixed case 72797: Fix quota reporting problem in cPanel.
  • Fixed case 73185: Respect setting of /etc/rrdtooldisable.
  • Fixed case 73209: Fix nested group usage in bracket notation.
  • Fixed case 73269: Report DNS zone save errors during account creation.
  • Fixed case 73325: Provide better errors and prevent faulty AppConfig registrations.
  • Fixed case 73337: Only present a link if it is accessible through ACL check.
  • [security] Fixed case 73349: Update Ruby to 1.8.7-p374 to address CVE-2013-4073.
  • Fixed case 73365: Making ensure_includes not edit httpd.conf.
  • Fixed case 73385: Prevent a single invalid ssl cert from breaking ssl_migration.
  • Fixed case 73389: Change table option for MySQL engine specification to "ENGINE" instead of "TYPE".
  • Fixed case 73457: Update Archive::Tar::Builder to the latest version.
  • Fixed case 73521: Add missing Cpanel::SSLInfo to scripts/ssl_crt_status.
  • Fixed case 73529: Avoid race condition in updateleechprotect.
  • Fixed case 73661: Update nsd to 3.2.16-1.cp1136.
  • Fixed case 73693: Fix another race condition in updateleechprotect.
  • Fixed case 73817: Add the correct database name to look for roundcube.
  • Fixed case 73857: Add line break to prevent concatenation of unrelated domain output messages.
  • Fixed case 73869: Fix ssl_crt_status detection of domains without certs.
  • Fixed case 73901: Fix pkgacct error handling problem.
  • Fixed case 73977: Security Token Missing prevents login with HTTP Authentication.
  • Fixed case 74049: Fix phpMyAdmin 4 database renames.
  • Fixed case 74093: Detect CLONE_NEWPID success or failure using getppid.
  • Fixed case 74109: Fix cPanel security token reuse in cpsrvd.
  • Fixed case 74177: Gracefully handle when MySQL server is down in setupdbmap.
  • Fixed case 74301: Deliver mail from cron normally under jailshell.
  • Implemented case 71285: Update phpMyAdmin to version 4.0.4.
  • Implemented case 73877: Run pre-build tests with failures visible.
  • Implemented case 73897: Remove migrate-attracta.

11.38.1.15

2013-07-23
  • Fixed case 73073: Prevent security token destruction on access to a login url.
  • [security] Fixed case 73349: Update Ruby to 1.8.7-p374 to address CVE-2013-4073.

11.38.1.14

2013-07-18
  • Fixed case 71669: Failed logins destroy the session before the security token can be saved.
  • Fixed case 71817: Fix information disclosure in cPanel's SSL::installed_hosts API call.
  • Fixed case 71889: Properly display XFS quotas.
  • Fixed case 72025: Allow customization of AppConfig alert priority.
  • Fixed case 72129: Start stunnel when necessary as part of cpsrvd startup.
  • Fixed case 72205: Make backup destination disabled email high priority.
  • Fixed case 72681: Fix SSL Parser handling the text "key".
  • Implemented case 71933: Allow LogMeIn.pm to provide a security token.

11.38.1.13

2013-07-15
  • [security] Fixed case 71121: Update squirrelmail login_auth plugin.
  • [security] Fixed case 71573: DNSAdmin request check for zone owner.
  • [security] Fixed case 71865: Verify that a reseller owns a domain being modified.
  • [security] Fixed case 71869: Drop privileges before updating order status.
  • [security] Fixed cases 71973,71573: Improve DNS Admin fix.
  • [security] Fixed case 72153: DNSAdmin clean the zones from the query string.
  • [security] Fixed case 72161: Do not update user's files as root when suspending an account.
  • [security] Fixed case 72237: Restore ability to root to update any zones on the system.
  • [security] Fixed case 72253: Do full zone owner lookup in dnsadmin.
  • [security] Fixed case 72357: Limit certain dnsadmin actions to root.
  • [security] Fixed case 72685: Keep system-owned domains in userdomains.
  • [security] Fixed case 72725: Restore some required reseller dnsadmin access.
  • [security] Fixed case 72821: Prohibit "system" as a username.

11.38.1.6

2013-06-28
  • Fixed case 71617: Improve roundcube sqlite fix for CentOS 5.x servers.
  • Implemented case 71137: Improve usability of security tokens.

11.38.1.5

2013-06-27
  • Fixed case 69685: Disable jailshell procfs mounting on buggy kernels.
  • Fixed case 70201: Normalize IP display in WHM.
  • Fixed case 70401: Improve UI when checking backup destinations in WHM.
  • Fixed case 70681: Make SSL's domain matching case-insensitive for ASCII domains.
  • Fixed case 70949: Fix JS parsing of certs that happen to trip up asn1js.
  • Fixed case 71049: Use correct Tweak Settings link for AppConfig settings.
  • Fixed case 71405: Fix Roundcube upgrade when using SQLite.
  • Implemented case 71229: Do not jail autoresponders.

11.38.1.4

2013-06-26
  • [security] Fixed case 71109: Write log archives as the user.
  • [security] Fixed case 71193: Drop privileges before manipulating user directories.

11.38.0.19

2013-06-26
  • [security] Fixed case 71109: Write log archives as the user.
  • [security] Fixed case 71193: Drop privileges before manipulating user directories.

11.38.1.3

2013-06-19
  • Fixed case 63502: Update dovecot to 1.2.17-3.cp1136.
  • Fixed case 66349: Do not use wildcard character in apache ServerName directive.
  • Fixed case 70197: Don't start stunnel unless required.
  • Fixed case 70485: Fix timeout and memory issue when dumping a MySQL database.
  • Fixed case 70581: Print an error when a suspended account cannot be backed up.
  • Fixed case 70757: Enable Tomcat support after account transfers.
  • Fixed case 70777: Corrected WHM backup front-end form validation for additional destinations.
  • Fixed case 70781: Do not freeze application list into cpsrvd binary.
  • Fixed case 70793: Improve WHM backup destination validation.

11.38.1.2

2013-06-18
  • Fixed case 60047: Preserve custom SPF records when creating addon domains.
  • Fixed case 60703: Don't falsely alert the admin about root logins.
  • Fixed case 63115: Preserve custom A records during transfer.
  • Fixed case 63275: Fix a issue with API2 expanding % in template parsing.
  • Fixed case 64526: Adjusted alignment of help text and supporting page elements.
  • Fixed case 65177: Unescape TXT record when adding an entry with a space.
  • Fixed case 65765: Pkgacct can use incremental backup from the improved backup system.
  • Fixed case 65913: Fix for hiding breadcrumbs in config php & suexec popup.
  • Fixed case 65977: Allow password change for mailing lists with bounces.
  • Fixed case 66681: Remove unreachable code in Cpanel::SafetyBits.
  • Fixed case 66849: Fix for adding users and databases with hyphens in PostgreSQL.
  • Fixed case 66861: Fix recursive chowning as root.
  • Fixed case 66889: Check webalizer binary and use main binary or english as default.
  • Fixed case 66913: Do not display mysql and postgres root user in frontend.
  • Fixed case 66997: Prevent known warnings in tests, do local data in tmp dir.
  • Fixed case 67009: Update_homedir_data fails to update the homedir in the ssl userdata.
  • Fixed case 67121: Properly update maximum number of cpsrvd connections.
  • Fixed case 67165: Implement '--allow-override' option for bin/backup.
  • Fixed case 67369: PwCache need to be purge when (un)suspending a reseller.
  • Fixed case 67385: Fix CSS for filter in backup user selection.
  • Fixed case 67405: Validate ip value in restorepkg.
  • Fixed case 67421: Fix to copy multiple accounts when one fails using firefox.
  • [security] Fixed case 67573: Use safe temp paths when installing ruby.
  • Fixed case 67609: Increase test coverage of Cpanel::Mysql.
  • Fixed case 67661: Always use certificate's domain when alwaysredirecttossl is set.
  • Fixed case 67669: Improve log messages when updating backup configuration.
  • Fixed case 67677: Periodic clear of orphened virtfs mounts.
  • Fixed case 67721: T/Cpanel-CachedDataStore.t failing.
  • Fixed case 67773: Error out when trying to transfer as a user with noshell.
  • Fixed case 67777: Properly warn on bad credentials on transfer.
  • Fixed case 67921: Avoid calling wrap binaries on loading phpMyAdmin.
  • Fixed case 68041: Prevent creating SSL vhosts on different IPs from the non-SSL vhost.
  • Fixed case 68181: DNS Cleanup Page is Blank in IE 10.
  • Fixed case 68233: Fix pop config files group after restoring a backup.
  • Fixed case 68409: Missing use strict test for exim.pl.local.
  • Fixed case 68413: Improve logaholic update lock system.
  • Fixed case 68641: Synchronize transfer scripts before copying them to a server.
  • Fixed case 68697: PHP Pecl Installer lists installed extensions when POSIX not installed.
  • Fixed case 68709: Catch transfer failures due to sudo being missing.
  • Fixed case 68713: Make clean_temp_users.pl work again.
  • Fixed case 68937: Allow BoxTrapper deliveries even if forwards are rejected.
  • Fixed case 68985: Make return failure and success the same on remote and local invocation.
  • Fixed case 69033: Fix IP Deny manager when newline is missing in .htaccess.
  • Fixed case 69101: Update cpanm to fix perlinstaller failure.
  • Fixed case 69109: Send correct HTTP headers with comet responses.
  • Fixed case 69161: Enable JSON::XS::shrink for Perl >= 5.8.
  • Fixed case 69185: MyDNS silently truncates DNS names to 64 characters.
  • Fixed case 69237: Update pure-ftpd to the latest version.
  • Fixed case 69241: Skip ipv6 addresses from ifconfig output.
  • Fixed case 69253: Increase default cPanel maxmem and minimum value to 512 MB.
  • Fixed case 69281: Fix localization of YUI Calendar in WHM Mail Delivery Reports.
  • Fixed case 69469: Remove duplicate errors message from an API call.
  • Fixed case 69605: Make Cpanel::CachedDataStore::store_ref race safe.
  • Fixed case 69737: Update MySQL 5.5 to version 5.5.32-1.cp1136.
  • Fixed case 69741: Added easy_apache_ui symlink to .gitignore.
  • Fixed case 69845: Fix roundcube database convertion to SQLite.
  • Fixed case 70061: Symlink, not hardlink, the python binary into place.
  • Fixed case 70141: Ensure that the bandmin .htaccess file is in place.
  • Fixed cases 70393,63178: Fix phpPgAdmin autologins with special characters.
  • Fixed case 70405: Unregister_appconfig incorrectly matches displayname.
  • Fixed case 70461: Tweak Settings text for appconfig is reversed.
  • Fixed case 70509: _find_best_match_for_domain_on_certificate should prefer the hostname.
  • Fixed case 70577: Add alternate password strength url to appconfig.
  • Fixed case 70673: Add puttykey.cgi to appconfig.
  • Fixed case 70701: Make user key actually optional in appconfig.
  • Fixed case 70705: RPM installed munin needs to be registered with appconfig.
  • Implemented case 64581: Add ability to get just the current file name via ExpVar.
  • Implemented case 66565: Add a script to generate case summary for releases.
  • Implemented case 68377: Add a warning when restoring an account from untrusted source.
  • Implemented case 68589: Optional forced registration of apps in appconfig before WHM use.
  • Implemented case 69533: Update Roundcube to 0.9.1.
  • Implemented case 69657: Whostmgr::ACLS should enable ConfigObj acls that do not require a license.
  • Implemented case 70329: Backup User Selection needs mass actions to enable/disable all.
  • Implemented case 70497: SNI support for litespeed.

11.38.0.18

2013-06-17
  • Fixed case 69809: List only resellers with proper ACLs for locale editing.
  • Fixed case 70317: Pass through environment variables from Exim.
  • Fixed case 70389: Use configured timeout for uploading backups.
  • Fixed case 70409: Mount virtfs bind mounts with MS_REC.
  • Fixed case 70465: Fix jailshell static mount count.
  • Fixed case 70477: Improve bin/quota fallback when no results available.

11.38.0.17

2013-06-12
  • Fixed case 69273: Fix broken radio button in FTP transport template.
  • Fixed case 69397: Restore SSL vhosts for all account package restores, not just dedicated IPs.
  • Fixed case 69433: Possibility to adjust the backup destination time out value in WHM.
  • Fixed case 69797: Permit all actions for resellers with the all ACL.
  • [security] Fixed case 69849: Don't pass custom transport password on the command line.
  • Fixed case 70157: Shared IPs not shown if they have changed.
  • Fixed case 70161: Ensure /usr/local/cpanel is mounted under jailshell.

11.38.0.16

2013-06-10
  • Fixed case 69665: Cpanel::AdminBin::Server should permit numbers in function names.

11.38.0.15

2013-06-10
  • [security] Fixed case 68189: Improve file uploading in Web Template Editor.
  • [security] Fixed case 68213: Address two XSS vulnerabilities.
  • [security] Fixed case 68433: Fix XSS vulnerabilities in entropychat.
  • [security] Fixed case 68645: Sanitize MySQL usernames in SQL statements.
  • [security] Fixed case 68733: Sanitize theme supplied to brandingimage.cgi.
  • [security] Fixed case 68965: Add missing ACL checks to WHM CGIs.
  • Fixed case 69093: Don't warn about inability to back up when backups disabled.
  • [security] Fixed case 69329: Add a warning when restoring an account from untrusted source.
  • [security] Fixed case 69401: Improve reseller ACL check when running langadmin.
  • [tests] Fixed case 69277: Remove internal setting when loading a backup destination.

11.38.0.13

2013-05-24
  • Fixed case 68329: Restore functionality to hook system.
  • Fixed case 68993: Report each device only once when checking quota.
  • Fixed case 69009: Preserve backup invalid destination password during backup.

11.38.0.12

2013-05-23
  • Fixed case 68565: Fixed a linked array reference in ipmap.
  • Fixed case 68717: Prevent duplication of cabundles returned by fetchSSLFiles.
  • Fixed case 68849: Count quota usage once per drive.
  • Fixed case 68881: Fix error message with custom backup transports.
  • Fixed case 68917: Improve exception handling in backups.

11.38.0.10

2013-05-22
  • Fixed case 62947: Restore mysqltuner.pl to shipped files.
  • Fixed case 65429: Support JSPs under Apache 2.4.
  • Fixed case 68081: Jailshell needs to not re-jail when inside the jail.
  • Fixed case 68117: Prevent PHP eio or dio extensions from used if Apache mod_ruid2.so is installed.
  • Fixed case 68137: Touch /etc/group so jailshell is updated.
  • Fixed case 68229: Restore backup exclude rules to be relative to the user home directory.
  • Fixed case 68321: Detect whether any Tomcat (5.5 or 7) installed.
  • Fixed case 68401: From header rewrites fail if the From header is missing.
  • Fixed case 68437: SSL cert data is not always written with the correct permissions.
  • Fixed case 68457: Deliver domains outside of the jail via SMTP to localhost.
  • Fixed case 68629: Fix out of memory error when downloading backups.
  • Fixed case 68677: Do not try to set up a virtfs mount if the mount point is a symlink.
  • Fixed case 68821: Fix failures resulting from incomplete virtfs changes.
  • Implemented case 68025: Warn users before they create an SSL wildcard vhost.

11.38.0.8

2013-05-21
  • Fixed case 66309: Remove apache* from yum excludes.
  • Fixed case 67469: Fix Apache 2.4 wildcard userdata problem.
  • Fixed case 67557: Fix error when transferring from foreign control panel.
  • Fixed case 67673: Dnsadmin-ssl fails to load JSON::XS.
  • Fixed case 67753: Restore ability to specify From name in autoresponders.
  • Fixed case 67801: Mailtrap is missing from the required jailshell groups.
  • Fixed case 67805: Ensure that /etc/eximmailtrap is copied for jailshell.
  • [security] Fixed case 67945: Update MySQL 5.1 to 5.1.69-1.cp1136.
  • Fixed case 67985: Extend timeout for cpbackup_transporter tasks.
  • Fixed case 68037: Fix quota checking delays from too many virtfs mounts.
  • Implemented case 68225: Improve the quota script to use the quota command as a fallback.

11.38.0.7

2013-05-09
  • Fixed case 65181: Allow changing MySQL passwords.
  • Fixed case 67425: Virtuozzo clone flag failure (type 4).
  • Fixed case 67429: Revert chkservd changes to make sshd check connections.
  • Fixed case 67449: Cpanel::Redirect fails redirect to the proper place.
  • Fixed case 67477: Virtfs setup expected /etc/group to be shadowed.
  • Fixed case 67501: Preserve custom cron jobs when enabling new backup system.
  • Fixed case 67505: Jailshell to check for linux < 2.6.25 and skip read only mount attempt.
  • Fixed case 67533: Ensure checkallsslcerts runs nightly.

11.38.0.6

2013-05-08
  • Fixed case 64584: Use nfreeze instead of freeze in backup_restore_manager.
  • Fixed case 64849: Make backup error log contain newlines.
  • Fixed case 66741: Fix DNSOnly installation with 11.38.
  • Fixed case 67345: Inform admin of possible cause of chkservd failures.
  • Fixed case 67361: Jailshell not working in virtuozzo (type 3).
  • Fixed case 67373: Be clear about the source of the SSH port for chkservd.

11.38.0.5

2013-05-07
  • Fixed case 65629: Remove unneeded check for changemx in read-only mxadmin operations.
  • Fixed case 66629: Run linktest-df when running nativedf-install.
  • Fixed case 66665: Improve backup notifications when a backup fails.
  • Fixed case 66709: Don't unnecessarily log mirror IP addresses.
  • Fixed case 67005: Add missing dependency that prevented setsiteip from working.
  • Fixed case 67045: Updated Apache 2.4 directives to include cobra fix.
  • [security] Fixed case 67065: Prevent ssh keys from being overwritten by whm resellers.
  • Fixed case 67089: Send only one email on a successful backup.
  • Fixed case 67105: Changing users shell in WHM fails properly update crontab.
  • Fixed case 67129: CLONE_NEWPID fails under CentOS 6 xenpv.
  • Fixed case 67245: Prevent locale.js from throwing an exception on [output,apos].

11.38.0.1

2013-05-03
  • Fixed case 64536: Fixed quirky behavior of calendar after adding user to queue.
  • Fixed case 64566: Don't allow backup config with nowhere to back up.
  • [security] Fixed case 64649: Fix email selection when adding an auto responder from webmail.
  • Fixed case 65333: Add target data to XLIFF output.
  • Fixed case 65405: Change makevar glob from star to ampersand due to binary issues.
  • Fixed case 65493: Don't destroy files edited in File Manager when over quota.
  • Fixed case 65693: Update output,url in Cpanel::CPAN to match the one on CPAN.
  • Fixed case 65833: Fix generation of metadata for Courier certificates.
  • Fixed case 66045: Ensure failed files are preserved correctly.
  • Fixed case 66093: Don't destroy branding when user is over quota.
  • Fixed case 66597: Avoid leaving some temporary files when a user is over quota.
  • Fixed case 66605: Ensure that /proc is mounted when it should be.
  • Fixed case 66645: SSLUseStapling should not be enabled if openssl < 0.9.8g.
  • Fixed case 66649: Give more information on current upcp process.
  • Fixed case 66661: Convert some backup messages to logger calls.
  • Fixed case 66761: Ensure that SiteIP.pm::set() abort()s the httpd.conf meta-transaction on fail.
  • Fixed case 66773: Fix auto responders in a jailshell on CentOS 6.
  • Fixed case 66805: Bump major version to 11.38.
  • Fixed case 66813: Different versions of virtuozzo have different clone breakage.
  • Implemented case 63738: Add accesshash information to cPanel access log.
  • Implemented case 66429: Always report which mirror is used on an http request.

11.37.0.7

2013-04-26
  • Fixed case 64525: Added help text to local DNS option.
  • Fixed case 65425: Build mailman properly if /usr/local/cpanel/3rdparty/mailman is missing.
  • Fixed case 65645: Only update pg_hba.conf one time with security rules.
  • Fixed case 65761: Handle relative symlinks properly in writefile.
  • Fixed case 65945: Loosen permissions when generating .ftpquota.
  • Fixed case 66053: Fix WHM Restore a Full Backup/cpmove File error page.
  • Fixed case 66057: Rebuild userdomains after updating bandwidth limit.
  • Fixed case 66069: Make check_cpanel_rpms exit nonzero on error.
  • Fixed case 66089: Avoid recompiling Net::SSLeay and Filesys::Df when not required.
  • Fixed case 66113: Whitespace breaking from SSL project prevents search and copy.
  • Fixed case 66129: Speed up cpanellogd when new backup system enabled.
  • Fixed case 66181: Fix account transfer problem with errors from .bashrc.
  • Fixed case 66197: Make legacy API1/2 SSL installs determine domain implicitly from the cert.
  • Fixed case 66489: LIVEAPI cannot handle file uploads for php.
  • Fixed case 66545: Jailexec cannot write to /var/log on centos 6 breaking autoresponders.
  • Fixed case 66553: Fix "barber pole" on certain pages due to styling issue.
  • Fixed case 66593: Skip CLONE_NEWNS CLONE_NEWIPC on virtuozzo for jailshell.
  • Implemented case 63996: Install Perl and PECL ImageMagick modules.

11.37.0.5

2013-04-24
  • Fixed case 61581: Remove ancient version of Interchange.
  • Fixed case 61599: Make build_transfers keep last head rev locally.
  • Fixed case 62884: Update rpm.versions to look for 11.36 RPMs.
  • Fixed case 62905: Remove unused subroutines from Cpanel::DIp.
  • Fixed case 63058: Ensure $tarball->read() modifies 2nd argument.
  • Fixed case 63494: Bypass processing empty filters to avoid LRU cache reset in exim.
  • Fixed case 63584: Improve error handling for cpanelsync.
  • Fixed case 63659: WHM Privs page is missing a closing a tag causing all the privs to be links.
  • Fixed case 63660: Fix "Error Code" message when installing RPMs.
  • Fixed case 63682: Fix mainacct_central_user_filter when no filter is present.
  • Fixed case 63771: Always enable security tokens.
  • [security] Fixed case 63915: Verify correct reads/writes to user SSLStorage.
  • Fixed case 63965: Address additional lower risk security concerns for ssl project.
  • Fixed case 64061: Fixed t/Cpanel-Backup-Config.t.
  • Fixed case 64067: UAPI though JSON::XS fails without convert_blessed being enabled.
  • Fixed case 64125: Fix sandbox url_templates to point to 11.36.
  • Fixed case 64134: Do not load bashrc when copying an account from a server.
  • Fixed case 64172: Exim header rewrites should ignore Mailer-Daemon messages.
  • Fixed case 64174: Restore upgrade_in_progress.txt to its original location.
  • Fixed case 64196: Revert Optimization to Cpanel::NSCD and add tests.
  • Fixed case 64204: Fix backup_restore_manager smoker failure.
  • Fixed case 64227: Fix errors on backups page in cPanel.
  • Fixed case 64239: Update JSON::XS to 2.33_06 with utf8 fixes.
  • Fixed case 64241: Add missing json::xs build-tools update files for 2.33_06.
  • Fixed case 64247: Reverse symlinks and move adminbins.
  • Fixed case 64276: LegacyBackups taskrun script tries to load compiled-only module.
  • Fixed case 64293: Jail commands run from exim pipes for jail/noshell users.
  • Fixed case 64334: Fix email autoresponders to use email user in from header.
  • Fixed case 64368: Branding does not warn when it cannot access its files.
  • [security] Fixed case 64382: Prevent apache jails from being enabled if mod_ruid2 is not at least 0.9.4a.
  • [security] Fixed case 64400: Cpanel::Cron api commands allow injecting arbitrary content.
  • Fixed case 64460: Remove Cpanel::AdminBin::Server from distribution.
  • Fixed case 64478: Fix validate all with no destiantions.
  • Fixed case 64495: AdminBin Server needs to send nonrefs as plaintext to adminbins.
  • Fixed case 64501: Smoker failure in Cpanel::Chkservd::Tiny.
  • Fixed case 64503: Smoker failure t/Whostmgr-Accounts.t due to locks.
  • Fixed case 64504: Fix smoker failure t/whostmgr-bin-xml-api.pl_autocheck-all-commands.t.
  • Fixed case 64522: Remove tautology.
  • Fixed case 64528: Added helptext to custom template and cleaned up other destinations.
  • Fixed case 64532: Clarify meaning of section header.
  • Fixed case 64534: Update instructions for new interface names.
  • Fixed case 64535: Fix for destination save bug in webkit based browsers.
  • Fixed case 64549: sshd is not checked to see if it is responding.
  • Fixed case 64552: Install sets wrong permissions on bin/cpwrap, bin/jailexec.
  • Fixed case 64560: Fix portsadmin output formatting.
  • Fixed case 64570: Fix get_data_from_form() in ajaxapp.js from SSL phase 3 merge.
  • Fixed case 64571: Fix t/Whostmgr-API-1-Httpd.t.
  • Fixed case 64583: Don't kill off cpsrvd on upgrade to 11.38.
  • Fixed case 64592: Optimized the loop that compares the bad passwords.
  • [security] Fixed case 64601: Make backup code use SafeStorable.
  • Fixed case 64606: Create /var/cpanel/conf/apache if it doesn't exist.
  • Fixed case 64623: Add charset to content type header for json requests.
  • Fixed case 64633: Live API system does not show which file contains the error on failure.
  • Fixed case 64637: AdminBin::Server should provide a better error on missing adminbin.
  • Fixed case 64641: Cpanel::AdminBin refactoring does not pass back errors properly.
  • Fixed case 64665: Each update to $apacheconf_data in ApacheConf.pm should update the mtime.
  • Fixed case 64669: Ensure that update_vhost() always calls close() explicitly.
  • Fixed case 64721: Cpanel::SimpleSync::CORE needs to be compiled into setupvirtfs.
  • Fixed case 64725: UAPI / API3 support for LIVEAPI.
  • [security] Fixed case 64729: Don't allow remote execution of internal API 1 calls.
  • Fixed case 64837: Fixed destiantion mask handling on backup type incremental.
  • Fixed case 64861: Updated error checking on SFTP destination connections to catch errors on STDERR.
  • Fixed case 64893: Fixed typo in SFTP module for backups.
  • Fixed case 64933: Update MySQL 5.1 to 5.1.36-3cp1136.
  • Fixed case 64941: Update phpMyAdmin to 3.5.8.
  • Fixed case 64997: Always show correct FTP port in client configuration.
  • Fixed case 65041: Added logic to remove temporary directories after restoration is complete.
  • Fixed case 65053: Bring the regexp that the backend uses to validate SSL keys and certs to JS.
  • Fixed case 65069: Fix chkservd check for ftpd when using a custom port.
  • Fixed case 65133: Update MySQL 5.5 to 5.5.30-4.cp1136.
  • Fixed case 65161: Fix WHM Limit Bandwidth Usage value validation.
  • Fixed case 65169: Fix broken filter interface in webmail.
  • Fixed case 65173: Fix broken deregister function in cphulkd.
  • Fixed case 65205: Make new SSL vhosts use the same CGI privileges as in the cpuser file.
  • Fixed case 65249: Fix to restore DNS zone when autodiscover subdomains is disabled.
  • Fixed case 65305: Use a file ext and format flag for locale copy to match copy logic.
  • Fixed case 65325: Fix regexp for matching an Apache vhost with a given port. Add tests.
  • Fixed case 65337: Fix saving in Edit Locale live mode.
  • Fixed case 65369: Fix logaholic AdminBin calls.
  • Fixed case 65373: Make sure open_files_limit is placed appropriately.
  • Fixed case 65385: Make Cpanel::AdminBin::Serializer use shrink to roundtrip by downgrading utf8.
  • Fixed case 65389: Update PHP to 5.3.17-5.cp1136 with MySQLi support.
  • Fixed case 65401: Fix addpop and delpop.
  • Fixed case 65409: Fix breakages in CJT ajaxapp.js error notices.
  • Fixed case 65413: Fix image in Mail Troubleshooter for BoxTrapper.
  • Fixed case 65437: Prevent assigning a single non-shared IP to multiple accounts.
  • Fixed case 65465: Make API2 and API1 SSL installs interact correctly with other API2 & API1 calls.
  • Fixed case 65481: Restore validate.js to attaching to form submit button "click" events.
  • Fixed case 65497: Update to cPanel exim 4.80.1-1.
  • Fixed case 65509: Add autofixer for Pure-FTPd Bind problem.
  • Fixed case 65637: Check existing ssh keys when generating a new key from backup configuration.
  • Fixed case 65653: Don't exclude metadata from user backups.
  • Fixed case 65677: Run rpmup on DNSONLY.
  • Fixed case 65761: Handle relative symlinks properly in writefile.
  • Fixed case 65789: Honor the --skiphomedir flag when packaging an account.
  • Fixed case 65801: Fix error handling on Restore A Full Backup or cpmove Archive.
  • Fixed case 65809: Restore cpanellogd pid file.
  • Fixed case 65817: Do not reset apache include configuration when a local error is detected.
  • Fixed case 65821: Pkgacct fails on 11.38 if user is over quota.
  • Fixed case 65857: Fix copy about CGI privs and upgrading accounts.
  • Fixed case 65865: Fix legacy backup system with accounts created before 11.38.
  • Fixed case 65889: Fix empty sorting preferences in Horde.
  • Fixed case 66025: Fix jailshell with /dev/null read only permission.
  • Fixed case 66041: Fixed a misspelling.
  • Fixed case 66065: Added read-only class to retention fields when incremental is set.
  • Fixed case 66133: Fix LegacyBackups install task.
  • Implemented case 41691: Add crond to the service manager.
  • Implemented case 57803: Integrate Archive::Tar::Builder, pigz into pkgacct.
  • Implemented case 61132: Use Cpanel::Logger for cphulkd.
  • Implemented case 63126: Remove dependency loop from Cpanel::Locale::Utils::MkDB.
  • Implemented case 63384: Add an option to rewrite the From: header to the actual sender.
  • Implemented case 63491: SSL Project Phase One.
  • Implemented case 63643: SSL Project Phase Two.
  • Implemented case 63907: Convert Cpanel::JSON backend to JSON::XS.
  • Implemented case 63912: Convert Cpanel::AdminBin and AdminBins to use Cpanel::AdminBin::Serializer.
  • Implemented case 63941: Add initial locale_tool project changes.
  • Implemented case 64019: Improvements to WHM Backups; an Angry Llama production.
  • Implemented case 64156: Sort etc/cpanel.config.
  • Implemented case 64171: Make the adminbin system pluggable and eliminate cpwrap.
  • Implemented case 64177: Apache Jails.
  • Implemented case 64194: Remove legacy apache templates.
  • Implemented case 64197: Jail Shell Update.
  • Implemented case 64242: Change jailshell to use clone to provide a limited /proc.
  • Implemented case 64294: Force cron to use jailshell when the users shell is jailshell or noshell.
  • Implemented case 64310: Make setupvirtfs compiled to decrease jailshell login time.
  • Implemented case 64388: Update cplint to 0.059-1.cp1136.
  • Implemented case 64401: Update minimum required version of Text::Extract::MaketextCallPhrases.
  • Implemented case 64432: SSL Project Phase Three.
  • Implemented case 64445: New installs get MySQL 5.5.
  • Implemented case 64455: Add tweaks for setting the autodiscovery host and prefered mail service.
  • Implemented case 64591: Updated de/authorize autofixers for multi server support.
  • Implemented case 64605: SSL project phase 3 changes to maketext() strings from documentation review.
  • Implemented case 64733: Add a tool for showing all available UAPI calls and args for docs.
  • Implemented case 65589: Support cagefs_enter for exim pipes.
  • Implemented case 65745: Log summary of updates for historical purposes.
  • [tests] Fixed case 62978: Convert scripts/installpostgres as a modulino.
  • [tests] Fixed case 64436: Improve error handling in cpwrap.
  • [tests] Fixed case 64557: Remove warnings from Cpanel::SysQuota.
  • [tests] Fixed case 64953: Make AdminBin error reporting more consistent.
Topic revision: r39 - 31 Mar 2014 - 22:33:36 - Main.JdLightsey