1. cPanel & WHM Documentation
  2. Change Logs
  3. cPanel & WHM Change Log
  4. 126 Change Log

126 Change Log

Last modified: 2025 April 13

126.0.14

2025-04-13
  • Fixed RE-1477: Update rpm.versions for cpanel-perl-536: CVE-2024-56406: Heap-buffer-overflow with tr//

126.0.13

2025-04-08
  • Fixed CPANEL-46530: Update Mailman to 2.2.0.16-2: adds some limits to the one time backup that happens for mailman when upgrading to the python3 version.
  • Fixed HB-8228: Update Mailman to version 2.2.0-15 to fix module imports.
  • Fixed RE-1159: Allow Security Advisor to begin recommending ELevate to users of AlmaLinux 8.
  • Fixed RE-1358: Fix IPv6 Overlap check for shared IP in Whostmgr::TweakSettings::Basic.
  • Fixed WPX-6232: Improve bin/checkallsslcerts pre-DCV checks and error handling.
  • Fixed case MOON-2951: Update in-app TypeForm Survey URL's.

126.0.11

2025-03-26
  • Fixed RE-1418: Update cpanel-exim to 4.98.1-2.cp118 in etc/rpm.versions to fix CVE-2025-30232.

126.0.10

2025-03-19
  • Fixed case HB-8187: Fix roundcube conversion for large number of events.
  • Fixed case HB-8199: Update Mailman to version 2.2.0.14-1.
  • Fixed case HB-8223: Fix Mailman config file ownership after a hostname change.
  • Fixed case RE-1274: Update cpanel-ioncube to 14.4.0 in rpm.versions.
  • Fixed case RE-1318: Fix Security Advisor detection of Suexec.
  • Fixed case RE-1322: Fix bug in the AdminBin layer where the "enable_api_log" setting in cpanel.config could cause API calls to fail for suspended accounts.
  • Fixed case RE-1393: Update cpanel-php83 to 8.3.19 in etc/rpm.versions. (CVE-2025-1736, CVE-2025-1861, CVE-2025-1734, CVE-2025-1217, CVE-2025-1219, CVE-2024-11235)

126.0.9

2025-03-04
  • Fixed HB-8200: Update Mailman to version 2.2.0.11-1, upgrade and archive related fixes.
  • Fixed HB-8201: Fix mailman AttributeError: 'Message' object has no attribute 'policy'.
  • Fixed RE-1319: Reject DB imports larger than PHP download limits in myadmin.
  • Fixed RE-1346: Resume use of BIND zone-checking utilities when ALIAS records are not present.
  • Fixed RE-1360: Update Mailman to version 2.2.0.11-2.

126.0.6

2025-02-25
  • Fixed CPANEL-46432: Teach the (deprecated) Sectigo AutoSSL provider to recognize certificates signed by an updated CA.

126.0.5

2025-02-24
  • Fixed HB-8184: Add touchfile to disable cpdavd TLS caching for OpenSSL < v3.
  • Fixed HB-8202: Update mailman to 2.2.0.10-1 to fix DMARC handling.
  • Fixed RE-1219: Update cpanel-analog, cpanel-ldns, cpanel-libzip, cpanel-libtidy, cpanel-mariadb-connector, cpanel-p0f, cpanel-puttygen, cpanel-re2c, cpanel-rrdtool, and cpanel-webalizer.
  • Fixed RE-1227: Update BackBlaze B2 backup transport to use the v3 API.
  • Fixed RE-1229: Fix issue with BIND leaving cruft in the named.conf file when deleting accounts after having rebuilt the dns config.
  • Fixed RE-1277: Update cpanel-php83 to 8.3.17.
  • Fixed RE-1326: Update cpanel-exim to 4.98.1 for CVE-2025-26794.
  • Fixed ZC-12594: Fix failure to upgrade to MariaDB 11.4.
  • Implemented RE-1292: Ship cpanel-perl-536-datetime-event-recurrence and dependencies.
  • Implemented RE-1339: Ship cpanel-perl-536-datetime-event-ical.

126.0.4

2025-02-11
  • Fixed RE-1211: Remove restriction on IPv6 range addition when the range only overlaps the server's Main IP.
  • Case ZC-12552: Remove generated hostnames from Change Hostname
  • Case ZC-12553: Prevent cprapid.com accounts/domain creation

126.0.3

2025-02-05
  • DUCKS-1974: Initial release of the Social Media Management (powered by SocialBee) plugin for select company IDs
  • DUCKS-1769: Initial release of the SEO plugin for select company IDs
  • Fixed HB-7752: Fix several issues with Reminders app on MacOS, improve migration.
  • Fixed HB-8126: Update cpanel-mailman to 2.2.0.8-1.
  • Fixed RE-780: Update recoverymgmt cron to only execute once per day.
  • Fixed RE-922: Filter out CloudLinux Network messages to prevent Security Advisor false positives.
  • Fixed RE-982: Skip slow rollout when the major version for the release and stable tier are the same.
  • Fixed RE-994: Ensure packages created by resellers default to the value set for "Max hourly emails per domain" in the Tweak Settings.
  • Fixed RE-1166: Update ProFTPD to 1.3.8c.
  • Fixed RE-1173: Update cpanel-php83 to 8.3.16.
  • Fixed RE-1178: Fix issue in cpanel's internal error reporting logic when UID or GID cannot be found for a given user/group combo.
  • Fixed RE-1182: Update cpanel-sqlite to 3.48.0.
  • Fixed RE-1188: Update cpanel-phpmyadmin to 5.2.2.
  • Fixed RE-1190: Update cpanel-p0f to 3.09b-2.cp108.
  • Fixed RE-1192: Update cpanel-pigz to 2.4-2.cp108.

126.0.2

2025-01-14
  • Fixed HB-8125: Mailman analytics integration.
  • Fixed HB-8169: Update cpanel-mailman to 2.2.0.6-1.
  • Fixed RE-938: Revert CPANEL-42994: broke unusual but valid behavior in the addaddondomain API call.
  • Fixed RE-984: Better handle a missing cPanel install version file when collecting UI analytics information.

126.0.1

2025-01-08
  • Fixed DUCKS-847: Sitejet will not throw 400 after Transfer Tool process.
  • Fixed DUCKS-1455: Include agent360 in reserved usernames list.
  • Fixed HB-7679: Track UI events on the Email Deliverability page.
  • Fixed HB-7748: Tighter Exim requirements for sending local mail.
  • Fixed HB-7933: Update cpanel-roundcubemail to v1.6.9.0.
  • Fixed HB-7948: Update Roundcube for multiple bugfixes.
  • Fixed HB-7964: Fix issue that was preventing calendar invites from being sent.
  • Fixed HB-8063: Collect Webmail login origin point via Mixpanel.
  • Fixed HB-8115: Update cpanel-mailman to 2.2.0.3 and cpanel-dnspython to 2.1.0 with python3.
  • Fixed HB-8123: Remove remaining python2 references that coincide with Mailman2.
  • Fixed MOON-52: Internal Angular upgrade to version 18.
  • Fixed MOON-1994: Fixed checkbox selection issue on initial setup.
  • Fixed MOON-2025: Improved consistency of scrollbar appearance in the left sidebar of WHM.
  • Fixed MOON-2151: Interface analytics for cPanel are now configured in Account Preferences.
  • Fixed MOONS-1699: Corrected jump location for anchor links on the Edit Database Configuration page for WHM.
  • Fixed MOONS-1743: Angular 16 and dependency library upgrades.
  • Fixed RE-567: Update French translations.
  • Fixed RE-646: Return proper message when the “fetch_vhost_ssl_components” WHM API1 call has an internal error.
  • Fixed RE-676: Retire the cpanel-dovecot-xaps package and the associated UI in WHM for installing APNS certs.
  • Fixed RE-726: Fixed the "SSH Password Authorization Tweak" for cases where the sshd configuration file has an include directory.
  • Fixed RE-758: Update cpanel-git to 2.46.1.
  • Fixed RE-769: Assure Imunify360/AVPlus install happens exclusively.
  • Fixed RE-771: For the timezone cookie, set the "Secure" attribute to true.
  • Fixed RE-819: Remove "additional-from-cache" line from BIND config for BIND versions 9.16 and above.
  • Fixed RE-842: Update cpanel-exim to 4.98.
  • Fixed RE-868: Fix an exception when shutting down socket connections in Cpanel::Server::Connection::SSL.
  • Fixed RE-873: Update cpanel-unbound to 1.21.1 (fixes CVE-2024-8508).
  • Fixed RE-884: Optimize _get_account_age function in UIAnalytics template plugin.
  • Fixed RE-884: Optimize load of Koality cpanel template plugin.
  • Fixed RE-884: Optimize get_root_age call in UIAnalytics plugin initialization.
  • Fixed RE-890: Internal upgrade to node 22.
  • Fixed RE-909: Fix issue in bin/rebuild-templates where templates were not rebuilt by adding a –force option and using that during upcp.
  • Fixed RE-909: Fix bug in bin/rebuild-templates where it regenerated templates based on previously compiled templates.
  • Fixed RE-1035: Update AWStats to version 7.9.
  • Fixed RE-1037: Update cpanel-dovecot to 2.3.21.1.
  • Fixed RE-1038: Make cPanel depend on the Zstd library.
  • Fixed RE-1038: Update cpanel-mariadb-connector to 3.3.13.
  • Fixed RE-1040: Update RRDtool to 1.9.0.
  • Fixed RE-1041: Upgrade SQLite to 3.47.2.
  • Fixed RE-1063: Drop support for Python2 in cPanel & WHM.
  • Fixed RE-1072: Update cpanel-pdns to rely on upstream libboost and mark the cpanel-boost packages as obsolete in rpm.versions.
  • Fixed RE-1074: Update cpanel-php83 to 8.3.15 in rpm.versions.
  • Fixed RE-1091: Remove cpanel-perl-536-inline-python.
  • Fixed WPX-4100: Return 'Settings' functionality to WP2 >> Filemanager.
  • Fixed WPX-4243: Restore send bandwidth email notification in Tweak Settings.
  • Fixed WPX-4360: Refactor the lock from Accounts::Create into a reusable module.
  • Fixed WPX-4516: Add a global exception handler the checkallsslcerts.
  • Fixed WPX-4727: Add OpenAPI documentation to WHM.
  • Fixed WPX-4859: Fix issue to create account when using French locale.
  • Fixed WPX-5117: Avoid adding multiple cprapid entries in Apache configuration.
  • Fixed WPX-5193: Update GeoIP DB to version 20241210.
  • Fixed ZC-12185: Introduce support for MySQL 8.4.
  • Fixed ZC-12322: Fix check_mysql false positives on MariaDB 11.4.
  • Fixed ZC-12323: Update references to deprecated MySQL utilities.
  • Fixed ZC-12388: Fix DNS using outdated config cache.

Additional Documentation