EasyApache 4 Change Log 2022
Last modified: May 18, 2022
EasyApache 4 does not use versioning and organizes changes by date only.
Each entry contains the following information:
- The package that we changed.
- The case number for the change.
- A description of the change.
For more information about our GitHub repository, read our The EasyApache 4 Git Repository and Build Updates documentation.
2022-5-18
ea-apache24-mod-qos
- EA-10709: Update
ea-apache24-mod-qos
from 11.71 to 11.72.
ea-passenger-src
- EA-10700: Update
ea-passenger-src
from 6.0.13 to 6.0.14.
ea-php80
- EA-10703: Update
ea-php80
from 8.0.18 to 8.0.19.
ea-php80-meta
- EA-10703: Update
ea-php80
from 8.0.18 to 8.0.19.
ea-php81
- EA-10705: Update
ea-php81
from 8.1.5 to 8.1.6.
ea-php81-meta
- EA-10705: Update
ea-php81
from 8.1.5 to 8.1.6.
ea-redis62
- EA-10686: Update
ea-redis62
from 6.2.6 to 6.2.7.
ea-tomcat100
- EA-10698: Update
ea-tomcat100
from 10.0.14 to 10.0.20.
libcurl
- EA-10702: Update
libcurl
from 7.83.0 to 7.83.1.
ea-ruby27-passenger
- EA-10701: Update
ea-ruby27-passenger
from 6.0.13 to 6.0.14.
ea-cpanel-tools
- ZC-9918: Correct names of packages on Ubuntu.
2022-5-11
ea-openssl11
- EA-10676: Update
ea-openssl11
from 1.1.1n to 1.1.1o (with fixes for CVE-2022-1473 and CVE-2022-1292)
2022-5-4
ea-cpanel-tools
- ZC-9960: Add new container package
ea-redis62
to the manifest.
ea-redis62
- ZC-9895: Add container-based redis.
libcurl
- EA-10666: Update
libcurl
from 7.82.0 to 7.83.0. - EA-10537: Update
libcurl
from 7.81.0 to 7.82.0.
ea-nodejs16
- EA-10667: Update
ea-nodejs16
from 16.14.2 to 16.15.0.
scl-sourceguardian
- EA-10672: Update Sourceguardian to support PHP 8.1.
ea-oniguruma
- EA-10674: Update
ea-oniguruma
from 6.9.7.1 to 6.9.8.
2022-4-27
ea-ruby27-passenger
- EA-10531: Suppress
No such file or directory
warning during install.
ea-podman
- ZC-9877: Add backup/restore sub commands, and manage backup exclude file.
- ZC-9909: Add
/scripts/removeacct
Hook.
2022-4-20
ea-memcached16
- ZC-8430: Add container-based
memcached
.
ea-passenger-src
- EA-10642: Update
ea-passenger-src
from 6.0.10 to 6.0.13.
ea-podman
- ZC-9651: Add initial support for container-based packages.
ea-podman-repo
- ZC-9651: Add initial support for container-based packages.
Ruby 2.7
- EA-10620: Update
ea-ruby27
from 2.7.5 to 2.7.6.ea-ruby27
ea-ruby27-meta
ea-ruby27-rubygem-mizuho
ea-ruby27-rubygem-nokogiri
ea-ruby27-rubygem-rack
ea-ruby27-rubygem-sqlite3
ea-tomcat85
- ZC-9892: Set
unpackWARs
to false initially.
ea-tomcat100
- ZC-9892: Correct default
deployOnStartup
, SetunpackWARs
to false initially.
ea-nginx-njs
- EA-10645: Update
ea-nginx-njs
from v0.7.2 to v0.7.3
ea-nginx-gzip
- ZC-9902: Remove conflict w/ brotli.
ea-nginx-brotli
- ZC-9902: Remove conflict w/ gzip.
scl-ioncube11
- EA-10640: Update
scl-ioncube11
from 11.0.0 to 11.0.1.
scl-sourceguardian
- EA-10641: Update
scl-sourceguardian
from 12.1.2 to 13.0.3.
ea-php74
- EA-10633: Update
ea-php74
from 7.4.28 to 7.4.29.
ea-php74-meta
- EA-10633: Update
ea-php74
from 7.4.28 to 7.4.29.
ea-php80
- EA-10636: Update
ea-php8
0 from 8.0.17 to 8.0.18.
ea-php80-meta
- EA-10636: Update
ea-php8
0 from 8.0.17 to 8.0.18.
ea-php81
- EA-10634: Update
ea-php81
from 8.1.4 to 8.1.5.
ea-php81-meta
- EA-10634: Update
ea-php81
from 8.1.4 to 8.1.5.
2022-4-13
ea-nginx
- ZC-9698: Proxy
robots.txt
(and favicon) since it can be dynamic (e.g. wordpress +.htaccess
). - ZC-9844: Add flag file to use micro caching as the cache defaults.
- EA-10535: Fix SSL certificate handling for custom mail subdomains.
2022-4-6
ea-cpanel-tools
- EA-10600: Add PHP 7.3 to EOL recommendations.
- ZC-9886: Add meta info to target-os profile and update EA4-production manifest when updating EA4 manifest.
ea-tomcat85
- EA-10604: Update
ea-tomcat85
from 8.5.77 to 8.5.78.
ea-ruby27-passenger
- EA-10603: Update
ea-ruby27-passenger
from 6.0.12 to 6.0.13.
2022-3-30
ea-apache24-mod-qos
- ZC-9726: Initial build.
ea-nginx-njs
- ZC-9697: Initial version.
ea-nginx
- EA-10590: Disable
nginx-debug
service on Ubuntu. - ZC-9645: Added
ea-nginx-ngxdev
to make it easier to make a package for NGINX modules.
ea-cpanel-tools
- ZC-9849: Add
pkg_manifest.json
and add target toea_current_to_profile
. - ZC-9854: Add
ea-nginx-njs
to additional packages and recommendations.
2022-3-23
ea-modsec2-rules-owasp-crs
- EA-10394: Update version in
meta_OWASP3.yaml
.
ea-nginx
- EA-10576: Fix server configuration template proxy caching setting.
ea-tomcat85
- EA-10578: Update
ea-tomcat85
from 8.5.76 to 8.5.77.
ea-php80
- EA-10575: Update
ea-php80
from 8.0.16 to 8.0.17.
ea-php80-meta
- EA-10575: Update
ea-php80
from 8.0.16 to 8.0.17.
ea-php81
- EA-10577: Update
ea-php81
from 8.1.3 to 8.1.4.
ea-php81-meta
- EA-10577: Update
ea-php81
from 8.1.3 to 8.1.4.
ea-nodejs16
- EA-10588: Update
ea-nodejs16
from 16.13.1 to 16.14.2 (with fix for OpenSSL via CVE-2022-0778 )
ea-cpanel-tools
- ZC-9823: Set php default version to 8.0.
ea-profiles-cpanel
- ZC-9823: Update profiles for PHP8.
2022-3-17
ea-openssl11
- EA-10564: Update
ea-openssl11
from 1.1.1m to 1.1.1n (with fix for CVE-2022-0778).
2022-3-16
ea-nginx-brotli
- ZC-9697: Initial version.
ea-nginx
- ZC-9756: Build Brotli module.
ea-cpanel-tools
- ZC-9758: Add
ea-nginx-brotli
to additional packages list and do http2-like toggle off recommendations. - ZC-9759: Add
container_based_packages
list toea4-metainfo.json
.
ea-nginx-gzip
- ZC-9757: Changes for co-existence with Brotli compression.
ea-apache24
- EA-10550: Update
ea-apache2
from 2.4.52 to 2.4.53 (with fixes for CVE-2022-23943, CVE-2022-22721, CVE-2022-22720, and CVE-2022-22719).
ea-ruby27-libuv
- EA-10547: Update
ea-ruby27-libuv
from 1.44.0 to 1.44.1.
ea-ngx-brotli-src
- ZC-9757: Initial commit.
2022-3-9
litespeed
- EA-10532: Update
litespeed
to 8.0.1.
scl-php54
scl-php55
scl-php56
scl-php70
scl-php71
scl-php72
scl-php73
ea-php74
ea-php80
ea-php81
ea-ruby27-libuv
- EA-10536: Update
ea-ruby27-libuv
from 1.43.0 to 1.44.0.
ea-nginx
- ZC-9800: Change edit of cpanel-proxy conf to include (akin to how we do
cloudflare.conf
) - EA-10493: The
server_name
directive needs the public/external IP on systems configured to use a NAT. - EA-10515: Add symlink protection for DCV validation folders for service subdomains.
ea-apache2-config
- ZC-9750: Add support for secure use of proxying to Apache with
mod_remoteip
.
2022-3-3
ea-nghttp2
- EA-10520: Update
ea-nghttp2
from 1.46.0 to 1.47.0.
ea-tomcat85
- EA-10523: Update
ea-tomcat85
from 8.5.75 to 8.5.76.
apr
- EA-10477: Check for
NULL
mutex inapr_global_mutex_child_init
.
2022-2-23
ea-nginx
- EA-10285: Have
ea-nginx config --all
update user configs in parallel. - EA-10503: Update standalone config to ensure 404 for non-existent php files.
ea-php74
- EA-10504: Update
ea-php74
from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php74-meta
- EA-10504: Update
ea-php74
from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php80
- EA-10505: Update
ea-php80
from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php80-meta
- EA-10505: Update
ea-php80
from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php81
- EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).
ea-php81-meta
- EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).
2022-2-16
ea-freetds
- EA-10495: Update
ea-freetds
from 1.3.8 to 1.3.9. - EA-10490: Update
ea-freetds
from 1.3.7 to 1.3.8.
ea-nginx
- EA-10489: Update
ea-nginx
from 1.21.5 to 1.21.6.
2022-2-9
ea-apache2-config
- ZC-9700: Do not use predictable cPanel-localhost header.
- EA-9800: Ensure
httpd.conf
has newline beforeUserDir
whenmod_passenger
installed. - EA-9376: Fix piped logging with log style set to common.
ea-nginx
- ZC-9700: Do not use predictable cPanel-localhost header.
- ZC-9700: Ensure random value is regenerated if missing or older than 30 minutes; ensure users can not see the value.
- EA-10464: Avoid redirect to https for service subdomain DCV validation.
ea-freetds
- EA-10479: Update
ea-freetds
from 1.3.6 to 1.3.7.
ea-nginx-gzip
- Initial release
- ZC-9722: Remove always-implicit text/html from
gzip_types
.
ea-php74
- EA-10461: Patch PHP-FPM/OpCache for
kill_all_lockers
bug (74709).
ea-cpanel-tools
- ZC-9690: Add
ea-nginx-gzip
to Additional Packages list.
2022-2-2
ea-apache2
- EA-10245: Add patch to change log level of accept mutex.
ea-nginx
- EA-10294: Add caching mechanism for wordpress info.
2022-1-26
ea-nginx
- ZC-9661: Configure SSL w/ system cert when domain does not have its own cert.
- EA-10283: Only perform regex check for wordpress login cookies when the URI matches a known wordpress login path.
ea-php80
- EA-10447: Update
ea-php80
from 8.0.14 to 8.0.15.
ea-php80-meta
- EA-10447: Update
ea-php80
from 8.0.14 to 8.0.15.
ea-php81
- EA-10451: Update
ea-php81
from 8.1.1 to 8.1.2.
ea-php81-meta
- EA-10451: Update
ea-php81
from 8.1.1 to 8.1.2.
scl-ruby24-passenger
- EA-10436: Update
scl-ruby24-passenger
from 6.0.7 to 6.0.12.
ea-tomcat85
- EA-10449: Update
ea-tomcat85
from 8.5.73 to 8.5.75.
mod_security2
- EA-10239: Increase compiler optimization level to help mitigate performance loss from large rulesets.
2022-1-20
scl-php73
- ZC-9628: Ensure
sqlite3
is linked intopdo_sqlite.so
. Also corrected enchant build error.
ea-cpanel-tools
- ZC-9636: Add recommends for
ea-nginx-http2
.
ea-profiles-cpanel
- ZC-8539: Create Default NGINX® profile.
ea-nginx
- EA-10428: Update
ea-nginx
from 1.21.4 to 1.21.5. - SEC-612:
whm-server-status
is accessible to the public whenea-nginx
is in use.
ea-nginx-http2
- ZC-9618: Initial release.
2022-1-12
ea-apache2-config
- SEC-614: Remove conditional logging based on the cPanel-localhost header. This is a security change.
ea-cpanel-tools
- ZC-9632: Prepare EA4
Additional Packages
section for upcomingea-nginx-http2
release.
ea-freetds
- EA-10388: Update
ea-freetds
from 1.3.4 to 1.3.6.
ea-nginx
- SEC-611: Set the
server_tokens
directive toOFF
innginx.conf
. This is a security change. - ZC-9343: Change
worker_processes
toauto
. - ZC-9343: Allow setting
worker_processes
via/etc/nginx/ea-nginx/settings.json
file. - ZC-9343: When writing
settings.json
make it human readable. - ZC-7303: Support IP based requests (ZC-9586: only use an IP once).
- ZC-9384: Use
mycpanel.pem
if it exists. - ZC-9615: IPv6 support for proxy subdomain redirect to https.
ea-php74
- ZC-7454: Add support for php-sodium.
- ZC-9611: Dependency issue with php-enchant.
- ZC-9598: Fix global register problem for Ubuntu.
ea-php80
- ZC-9605: Add support for php-sodium.
- ZC-9611: Dependency issue with php-enchant.
- ZC-9599: Fix Ubuntu 21 global regs problem.
ea-php81
- ZC-9587: Add support for php-sodium.
- ZC-9600: Fix Ubuntu 21 global regs problem.
ea-ruby27-libuv
- EA-10407: Update
ea-ruby27-libuv
from 1.42.0 to 1.43.0.
libcurl
- EA-10408: Update
libcurl
from 7.80.0 to 7.81.0.
mod_security2
- ZC-9641: Rebuilt to include
libcurl4
andlibgnutls
. - EA-10203: Add patch to fix memory leaks.
scl-ioncube10
- ZC-9608: Fix build dependency for Ubuntu 21.
scl-php-pear
- ZC-9547: Account for
/usr/local/bin/pear
target missing.
mod-suphp
- ZC-9596: Changes to build on Ubuntu 21.