132 Change Log
Last modified: 2025 September 30
132.0.0
2025-09-30
- Fixed CPANEL-37236: Enable DNS TXT records over 255 characters in WHM Zone Manager.
- Fixed CPANEL-39397: Fixed the terminal inside of cPanel to use the memory limits for the user.
- Fixed CPANEL-45613: Permit 0 as a valid value for nsec3_iterations in PDNS.
- Fixed CPANEL-46038: Restore entries missing from “/etc/sysconfig/exim” when “Email delivery retry time” is changed.
- Fixed CPANEL-46038: Check “/etc/sysconfig/exim” for validity during nightly cPanel maintenance.
- Fixed CPANEL-46080: Improve accuracy and performance for what should be 404 requests.
- Fixed CPANEL-46582: Add local sudoers group names to reserved usernames.
- Fixed CPANEL-46705: Fixed issue with the ‘All’ filter in the DNS Zone Manager.
- Fixed CPANEL-47026: Fix WHM Add a DNS Zone to give proper ownership for system domains.
- Fixed CPANEL-47114: Transfer system now has support for automatically assigned domains.
- Fixed CPANEL-47361: WebPros ExAuthn link in WHM.
- Fixed CPANEL-47362: Add panel.ini control to WebPros SSO option.
- Fixed CPANEL-47362: Implement WebPros SSO via Leika rollout.
- Fixed CPANEL-47512: Update createacct openapi to reflect changes related to temporary domains.
- Fixed CPANEL-47562: Prevent DNS edits for temporary domains.
- Fixed CPANEL-47617: Update Cpanel::Leika user override to be an ini file.
- Fixed CPANEL-47653: Remove support for cPanel provided MySQL55 and MySQL56 on Almalinux 8. These were already unsupported on all other platforms.
- Fixed CPANEL-47662: WHM users will see the in-page banner informing about restricted usage of the DNS Zone Manager feature when user’s account does not have registered domains assigned.
- Fixed CPANEL-47686: Mailman: Fix _pickle.UnpicklingError: Cannot import unsupported module.class ‘_codecs.encode’.
- Fixed CPANEL-47737: Users now don’t see the Share document root checkbox after navigating to the Create a New Domain page while having temporary domain assigned as a main/primary domain. The Document Root input is displayed by default in this case. Updated tooltips placement to be consistent with other form controls.
- Fixed CPANEL-47792: Fix bugs with temp addon domain to real addon domain conversion.
- Fixed CPANEL-47871: Upgrade to clamav 1.0.9 for CVE-2025-20260.
- Fixed CPANEL-47902: Use the system SQLite3 package to read bandwidth database entries.
- Fixed CPANEL-47915: Create leika_get_config API calls.
- Fixed CPANEL-47922: Upgrade cpanel-dovecot to 2.41.
- Fixed CPANEL-47960: Remove the ‘HTML Editor Removal’ Notification in WHM.
- Fixed CPANEL-47960: Integrate Jodit Editor into File Manager as the new HTML Editor (beta).
- Fixed CPANEL-47992: Allow temporary domain creation when ‘Allow Remote Domains’ is false.
- Fixed CPANEL-48013: Fix bad defaults for auth policy on Ubuntu in Cpanel::Config::Auth.
- Fixed CPANEL-48042: Additional validation for temporary domain conversion.
- Fixed CPANEL-48063: Users are no longer able to see and modify personhood settings in Account Preferences page.
- Fixed CPANEL-48065: Users can no longer view or modify personhood settings in cPanel’s Welcome Modal.
- Fixed CPANEL-48066: Users can no longer view or modify personhood settings in Webmail’s Welcome Modal.
- Fixed CPANEL-48071: Users can no longer view and modify personhood settings in the WHM’s initial setup steps.
- Fixed CPANEL-48089: Analytics collection, prompts, and display are now conditional based on Leika configuration.
- Fixed CPANEL-48095: Obsolete “Forks” package in cPanel Perl.
- Fixed CPANEL-48140: Adjust RELEASE rollout logic to use a 5 day release cycle.
- Fixed CPANEL-48149: Bump rpm.versions for update to cpanel-git-2.48.2.
- Fixed CPANEL-48166: Require distros derived from RHEL 9 to be at least at version 9.5.
- Fixed CPANEL-48204: Add new Domain category hook replace_temporary_domain.
- Fixed CPANEL-48224: Add support for cpanel-plugins and EA4 on AlmaLinux 10.
- Fixed CPANEL-48241: Update cpanel-perl to 5.42 and related CPAN modules.
- Fixed CPANEL-48296: Update cpanel-sqlite to 3.50.3 for CVE-2025-6965.
- Fixed CPANEL-48317: Upgrade AWStats to 8.0.
- Fixed CPANEL-48354: Always allow the system to install kernel modules during initial cPanel install.
- Fixed CPANEL-48362: Allow cpanel-3rdparty-bin package to handle symlink to /usr/local/cpanel/3rdparty/bin/perl during cPanel update.
- Fixed CPANEL-48405: Ensure that email headers containing SpamAssassin reports are properly escaped to comply with RFC 2047.
- Fixed CPANEL-48408: Fixed display of yum/dnf errors during the review stage of provisioning for EasyApache 4.
- Fixed CPANEL-48436: Ensure yum-config-manager check is local-setting agnostic.
- Fixed CPANEL-48458: Ensure that image preparation scripts find the correct MySQL/MariaDB unit.
- Fixed CPANEL-48470: Do not rely on the Cpanel-OS cache in fix-cpanel-perl.
- Fixed CPANEL-48487: Catch errors initializing SSLEay object during SSL cert verification and treat it as a failure to verify.
- Fixed CPANEL-48487: Fix bug in Cpanel::SSL::Objects::Certificate::File where private keys were not separated from certificates during instantiation.
- Fixed CPANEL-48518: Handle system package repository installations which come with both obsolete and valid keys.
- Fixed CPANEL-48520: Ensure that the nscd entry in Service Manager always knows the path to the program.
- Fixed CPANEL-48521: Make Packman more resilient against bad or unexpected data on the mirrors.
- Fixed CPANEL-48540: Make dependency on “acl” package explicit for all supported RHEL-derived distributions.
- Fixed CPANEL-48552: Restore quota_clone configuration block in dovecot.
- Fixed CPANEL-48552: Fix bug in Whostmgr::API::1::AdvConfig where setting incoming_reached_quota for dovecot did not also rebuild dovecot and exim’s configuration.
- Fixed CPANEL-48555: Add “Allow Weak Authentication Schemes” setting to WHM Dovecot configuration interface to allow WHM administrators to workaround login issues for users who happen to have their passwords hashed with MD5.
- Fixed CPANEL-48555: Fix missing dropdown options for Dovecot plaintext authentication setting in WHM Mail Server Configuration interface.
- Fixed CPANEL-48581: update requirejs to address CVE-2024-38999.
- Fixed CPANEL-48586: Update mailman to version 2.2.0-35.
- Fixed CPANEL-48633: Add systemd-logind to the list of services to ignore for find_outdated_services.
- Fixed CPANEL-48641: Handle rare file unlock condition when PID has not changed.
- Fixed CPANEL-48665: Implement API calls for in product survey.
- Fixed CPANEL-48696: Enable imunify support on Rocky 9.
- Fixed CPANEL-48716: Add cPAnel support for AlmaLinux 10.
- Fixed CPANEL-48719: Users are now asked to complete the survey after logging in the WHM.
- Fixed CPANEL-48723: Change the way the MySQL community repository is installed on the system.
- Fixed CPANEL-48730: Users are now asked to complete the survey after logging in.
- Fixed CPANEL-48811: Blocked unauthenticated users from enabling debug mode via a query parameter in the URL.
- Fixed CPANEL-48836: Change tech_domain warning to an info log entry.
- Fixed CPANEL-48843: Fix restoration issues when domains aren’t restored.
- Fixed CPANEL-48960: Fix potential race condition in the cPanel Log and Bandwidth Processor daemon.
- Fixed CPANEL-48965: Fix issue in Dovecot SNI config after 2.4 upgrade.
- Fixed CPANEL-49007: Avoid unnecessary NS lookups for temporary domains.
- Fixed CPANEL-49015: Update PHP to 8.4.12.
- Fixed CPANEL-49050: Update CGI::Simple to address CVE-2025-40927.
- Fixed CPANEL-49052: Fixed performance issue on Email Accounts interface.
- Fixed CPANEL-49082: Teach create account page to respect the unlimited radio button.
- Fixed CPANEL-49106: Update Cpanel::JSON::XS and JSON::XS to address CVE-2025-40929.
- Fixed CPANEL-49111: Arbitrary webmail account access possible for users missing ACL for feature.
- Fixed CPANEL-49116: Arbitrary file download possible for users missing ACL for filemanager feature.
- Fixed CPANEL-49149: Switch TicketSupport ssh checks to use lsof.
- Fixed CPANEL-49202: Bump rpm.versions for cpanel-clamav.
- Fixed CPANEL-49216: Bump rpm.versions for cpanel-geoipfree-data.
- Fixed CPANEL-49378: Ensure quota_clone dict entry always exists in dovecot.conf.
- Fixed CPANEL-49379: Guard against undefined return from readdir in Cpanel::FileUtils::Dir.
- Fixed CPANEL-49456: Bump rpm.versions for cpanel-roundcubemail.
- Fixed MOON-2973: Improved accessibility in the Account Preferences page.
- Fixed WPX-7591: Improve dependency handling for optional plugins.
- Fixed WPX-7770: Do not show the ‘HTML Editor Removal Notice’ on WP2 servers.
- Fixed WPX-7895: Create TaskProcessor for clearing all users cache by key.
- Implemented CPANEL-45720: Password and API Token notification improvements.
- Implemented CPANEL-46411: Add a way to set the default dmarc record.
- Implemented CPANEL-46549: Add robots meta tag to login pages.
- Implemented CPANEL-47150: Add support for temporary domains to the Domains interface in cPanel.
- Implemented CPANEL-47291: Enable pigeonhole sieve in dovecot + roundcube.
- Implemented CPANEL-47691: Update supporting code for cpanel-dovecot to support 2.4.
- Implemented CPANEL-47836: Allow parking registered domain on temporary domain.
- Implemented CPANEL-48763: Add support for Ubuntu 24.