---

Last modified: June 10, 2021

EasyApache 4 does not use versioning and organizes changes by date only.

Each entry contains the following information:

1. The package that we changed.
2. The case number for the change.
3. A description of the change.

For more information about our GitHub repository, read our The EasyApache 4 Git Repository and Build Updates documentation.

2021-6-10

---

ea-apache2-config

• ZC-8941: Fix 100-phpfpm_cleanup.pl’s logic bug with $installing.

2021-6-9

---

ea-nginx

• EA-9789: Silence logrotate script.
• EA-9812: NGINX fails to start when a folder contains a space.

ea-apache2-config

• ZC-8853: Ensure nobody user/group exists.

ea-php80

• EA-9832: Update ea-php80 to 8.0.7, drop 8.0.6.

ea-php80-meta

• EA-9832: Update ea-php80 to 8.0.7, drop 8.0.6.

ea-php74

• EA-9831: Update ea-php74 to 7.4.20, drop 7.4.19.

ea-php74-beta

• EA-9831: Update ea-php74 to 7.4.20, drop 7.4.19.

2021-6-2 emergency release

---

ea-apache24

• EA-9822: Revert change to httpd.service that caused EA-9823.
• EA-9823: Update to ea-apache24-2.4.48 lowers open files limit.

2021-6-2

---

ea-nginx

• EA-9791: Add alarm to request to determine if a domain is using CloudFlare.
• EA-9798: Update ea-nginx to 1.21.0, drop 1.20.0.

libcurl

• EA-9816: Fix linking to openssl.
• EA-9794: Update libcurl to 7.77.0, drop 7.76.1 (with fixes for CVE-2021-22897, CVE-2021-22898, and CVE-2021-22901.)

ea-apache2

• EA-9797: Update ea-apache2 to 2.4.48, drop 2.4.46 (with fixes for CVE-2021-30641, CVE-2020-35452, CVE-2020-26691, CVE-2020-26690, CVE-2020-13950, CVE-2020-13938, CVE-2019-17567, and CVE-2021-31618.)
• EA-9784: Change Apache to be a systemd notify service.

2021-5-19

---

ea-nginx

• EA-9774: Ensure logs are rotated daily.
• ZC-8830: Fix cache clearing bug w/ cache.
• ZC-8817: clear cache on certain ops.

ea-tomcat85

• EA-9772: Update ea-tomcat85 to 8.5.66, drop 8.5.65.

ea-ruby27

• EA-9759: Ensure ruby-devel is properly required.

ea-ruby27-meta

• EA-9759: Ensure ruby-devel is properly required.

2021-5-12

---

ea-nginx

• EA-9757: Remove unnecessary proxy config setting for wordpress sites.

ea-php74

• EA-9752: Update ea-php74 to 7.4.19, drop 7.4.18.

ea-php74-meta

• EA-9752: Update ea-php74 to 7.4.19, drop 7.4.18.

ea-php80

• EA-9762: Update ea-php80 to 8.0.6, drop 8.0.5.

ea-php80-meta

• EA-9762: Update ea-php80 to 8.0.6, drop 8.0.5.

2021-5-5

---

scl-php73

• EA-9730: Update scl-php73 to 7.3.28, drop 7.3.27.

scl-php73-meta

• EA-9730: Update scl-php73 to 7.3.28, drop 7.3.27.

ea-php74

• EA-9737: Update ea-php74 to 7.4.18, drop 7.4.16.

ea-php74-meta

• EA-9737: Update ea-php74 to 7.4.18, drop 7.4.16.

ea-php80

• EA-9732: Update ea-php80 to 8.0.5, drop 8.0.3.

ea-php80-meta

• EA-9732: Update ea-php80 to 8.0.5, drop 8.0.3.

ea-modsec2-rules-owasp-crs

• ZC-8756: Update for upstream ULC changes.

ea-libzip

• EA-9654: Require xz and xz-libs instead of lzma.

2021-4-28

---

ea-libicu

• EA-9714: Update ea-libicu to 69.1, drop 68.2.

ea-nginx

• EA-9706: Update ea-nginx to 1.20.0, drop 1.19.10.

ea-nodejs10

• EA-9707: Update ea-nodejs10 to 10.24.1, drop 10.24.0 (with updates for CVE-2021-3450, CVE-2021-3449, and CVE-2020-7774).

ea-oniguruma

• EA-9708: Update ea-oniguruma to 6.9.7.1, drop 6.9.6.

ea-tomcat85

• EA-9717: Update ea-tomcat85 to 8.5.65, drop 8.5.64.

libcurl

• EA-9710: Update libcurl to 7.76.1, drop 7.76.0.

2021-4-21

---

ea-nginx

• EA-9692: Ensure server blocks contain root path when in reverse proxy mode.
• EA-9694: Update ea-nginx to 1.19.10, drop 1.19.9.

2021-4-14

---

ea-nginx

• EA-9682: Create hook to rebuild config for tweak settings changes in WHM.
• EA-9683: Update ea-nginx to 1.19.9, drop 1.19.8.
• EA-9673: Honor proxysubdomains tweak setting when rebuilding config.
• EA-9672: Decrease delay to rebuild config when creating new domains.
• ZC-8719: Add mail subdomain like it does www.

ea-tomcat85

• EA-9676: Updateea-tomcat85 to 8.5.64, drop 8.5.63.

libcurl

• EA-9677: Update libcurl to 7.76.0, drop 7.75.0 (with fixes for CVE-2021-22890 and CVE-2021-22876).

2021-3-31

---

ea-apache2-config

• CPANEL-36164: Add proxy configuration for ActiveSync.

ea-cpanel-tools

• ZC-8653: Modifications to directives, from testing.
• ZC-8595: Add missing directives for ea-cpanel-tools.

ea-openssl11

• EA-9664: Update ea-openssl11 to 1.1.1k, drop 1.1.1j (with fixes for CVE-2021-3450 and CVE-2021-3449).

scl-php73

• EA-9625: Update litespeed to 7.9.

2021-3-24

---

ea-profiles-cpanel

• EA-9481: Update Phusion passenger version.

ea-nginx

• EA-9652: Invoke whmapi1 with full cPanel path.
• ZC-8591: Add /Microsoft-Server-ActiveSync proxy.
• EA-9638: Update ea-nginx to 1.19.8, drop 1.19.7.
• ZC-8541: Add sub command to scripts/ea-nginx to configure caching.

scl-sourceguardian

• EA-9650: Update SourceGuardian to 12.0 to support PHP 8.0

ea-ruby27-meta

• EA-9609: Update ea-ruby27 to 2.7.2, drop 2.7.1.
• EA-9609: Install racc and irb and require ruby-devel for update to 2.7.2.

ea-ruby27-rubygem-rack

• EA-9609: Update global version for ea-ruby27 2.7.2.

ea-ruby27

• EA-9609: Update ea-ruby27 to 2.7.2, drop 2.7.1.

ea-ruby27-rubygem-nokogiri

• EA-9607: Update Version to be compatible with tooling.
• EA-9605: Update ea-ruby27-rubygem-nokogiri to 1.11.1, drop 1.10.9.

ea-ruby27-passenger

• EA-9604: Update ea-ruby27-passenger to 6.0.7, drop 6.0.6.

ea-ruby27-libuv

• EA-9603: Update ea-ruby27-libuv to 1.41.0, drop 1.39.0.

2021-3-10

---

ea-cpanel-tools

• EA-9612: Update default PHP to 7.4.

ea-php74

• EA-9625: Update litespeed to 7.9.
• EA-9622: Update ea-php74 to 7.4.16, drop 7.4.15.

ea-php74-meta

• EA-9625: Update litespeed to 7.9.
• EA-9622: Update ea-php74 to 7.4.16, drop 7.4.15.

ea-php80

• EA-9625: Update litespeed to 7.9.
• EA-9623: Update ea-php80 to 8.0.3, drop 8.0.2.

ea-php80-meta

• EA-9625: Update litespeed to 7.9.
• EA-9623: Update ea-php80 to 8.0.3, drop 8.0.2.

ea-profiles-cpanel

• EA-9613: Update “allphp allphp-opcache default” profile(s): add ea-php80 based on ea-php73.

scl-php54

• EA-9625: Update litespeed to 7.9.

scl-php55

• EA-9625: Update litespeed to 7.9.

scl-php56

• EA-9625: Update litespeed to 7.9.

scl-php70

• EA-9625: Update litespeed to 7.9.

scl-php71

• EA-9625: Update litespeed to 7.9.

scl-php72

• EA-9625: Update litespeed to 7.9.

scl-php73

• EA-9625: Update litespeed to 7.9.

ea-nginx

• ZC-8436: Hooks for suspend/unsuspend acct, changing ip, and refactor clear-cache for API.
• ZC-8433: handle localhost/127.0.0.1/machines’s hostname consistently.
• ZC-8194: Add cloudflare config.
• ZC-8510: Do bandwidth notices and exceeding.
• ZC-8480: Move ea-nginx from Experimental to Production.

2021-3-3

---

scl-sourceguardian

EA-9610: Update scl-sourceguardian to 12.0, drop 11.4.1.

ea-nodejs10

EA-9601: Updateea-nodejs10 to 10.24.0, drop 10.23.3 (with fixes for CVE-2020-8265, CVE-2020-8287, and CVE-2020-1971).

2021-2-24

---

ea-nodejs10

• EA-9587: Update ea-nodejs10 to 10.23.3, drop 10.23.2.

ea-openssl11

• EA-9590: Update ea-openssl11 to 1.1.1j, drop 1.1.1i (with fixes for CVE-2021-23841 and CVE-2021-23840.)

libcurl

• EA-9567: Update libcurl to 7.75.0, drop 7.74.0.

mod_security2

• EA-9584: Update Conflicts for C6.
• EA-9427: Change the PATH to use /usr/bin/ so perl doesn’t conflict.

ea-modsec2-rules-owasp

• ZC-8471: Conflict w/ modsec 3 not ea-nginx.

2021-2-10

---

ea-apache24-mod_pagespeed

• EA-9560: Update to version 1.14.36.1

ea-nghttp2

• EA-9573: Update ea-nghttp2 to 1.43.0, drop 1.42.0.

ea-php74

• EA-9565: Update ea-php74 to 7.4.15, drop 7.4.14 (with fix for CVE-2021-21702).

ea-php74-meta

• EA-9565: Update ea-php74 to 7.4.15, drop 7.4.14 (with fix for CVE-2021-21702).

ea-php80

• EA-9574: Update ea-php80 to 8.0.2, drop 8.0.1 (with fix for CVE-2021-21702).

ea-php80-meta

• EA-9574: Update ea-php80 to 8.0.2, drop 8.0.1 (with fix for CVE-2021-21702).

ea-tomcat85

• EA-9566: Update ea-tomcat85 to 8.5.63, drop 8.5.61.

scl-php73

• EA-9568: Update scl-php73 to 7.3.27, drop 7.3.26 (with fix for CVE-2021-21702).

scl-php73-meta

• EA-9568: Update scl-php73 to 7.3.27, drop 7.3.26 (with fix for CVE-2021-21702).

2021-2-4

---

ea-apache2

• EA-9463: Enable mod_systemd for further startup enhancements.

ea-apache2-config

• EA-9550: Fix to not overwrite errordocument.conf when upgrading.

ea-libicu

• EA-9528: Update ea-libicu to 68.2-2, drop 68.2-1.

ea-nodejs10

• EA-9551: Update ea-nodejs10 to 10.23.2, drop 10.23.1.

2021-1-27

---

ea-cpanel-tools

• ZC-6815: Add ea-nginx-standalone to additional_packages.

2021-1-13

---

ea-apache2

• EA-9506: Do not start htcacheclean service if mod_cache_disk module is not loaded.

ea-libicu

• EA-9527: Update ea-libicu to 68.2-1. drop 67.

ea-nodejs10

• EA-9502: Update ea-nodejs10 to 10.23.1, drop 10.23.0 (with fixes for CVE-2020-8265, CVE-2020-8287, and CVE-2020-1971).

ea-php74

• EA-9517: Update ea-php74 to 7.4.14, drop 7.4.13 (with fix for CVE-2020-7071).

ea-php74-meta

• EA-9517: Update ea-php74 to 7.4.14, drop 7.4.13 (with fix for CVE-2020-7071).

ea-php80

• EA-9519: Update ea-php80 to 8.0.1, drop 8.0.0 (with fix for CVE-2020-7071).

ea-php80-meta

• EA-9519: Update ea-php80 to 8.0.1, drop 8.0.0 (with fix for CVE-2020-7071).

ea-ruby27-passenger

• ZC-8196: Ensure pre-2.7 apps are configured for 2.4 so that they continue to use 2.4.
• ZC-8188: Configure python if python3 is not there
• ZC-8188: Provide /etc/cpanel/ea4/passenger.python.

ea-tomcat85

• EA-9505: Update ea-tomcat85 to 8.5.61, drop 8.5.60.

scl-php73

• EA-9518: Update scl-php73 to 7.3.26, drop 7.3.25 (with fix for CVE-2020-7071).

scl-php73-meta

• EA-9518: Update scl-php73 to 7.3.26, drop 7.3.25 (with fix for CVE-2020-7071).

scl-ruby24

• ZC-8143: Compile ruby 2.4 binary to work when called directly.

scl-ruby24-passenger

• ZC-8188: Make python check verbose and explicitly for mod_passenger package.
• ZC-8188: Configure python if python3 is not there.
• ZC-8188: Provide /etc/cpanel/ea4/passenger.python.