EasyApache 4 Change Log 2022


Last modified: May 18, 2022

EasyApache 4 does not use versioning and organizes changes by date only.

Each entry contains the following information:

  1. The package that we changed.
  2. The case number for the change.
  3. A description of the change.

For more information about our GitHub repository, read our The EasyApache 4 Git Repository and Build Updates documentation.

2022-5-18


ea-apache24-mod-qos
  • EA-10709: Update ea-apache24-mod-qos from 11.71 to 11.72.
ea-passenger-src
  • EA-10700: Update ea-passenger-src from 6.0.13 to 6.0.14.
ea-php80
  • EA-10703: Update ea-php80 from 8.0.18 to 8.0.19.
ea-php80-meta
  • EA-10703: Update ea-php80 from 8.0.18 to 8.0.19.
ea-php81
  • EA-10705: Update ea-php81 from 8.1.5 to 8.1.6.
ea-php81-meta
  • EA-10705: Update ea-php81 from 8.1.5 to 8.1.6.
ea-redis62
  • EA-10686: Update ea-redis62 from 6.2.6 to 6.2.7.
ea-tomcat100
  • EA-10698: Update ea-tomcat100 from 10.0.14 to 10.0.20.
libcurl
  • EA-10702: Update libcurl from 7.83.0 to 7.83.1.
ea-ruby27-passenger
  • EA-10701: Update ea-ruby27-passenger from 6.0.13 to 6.0.14.
ea-cpanel-tools
  • ZC-9918: Correct names of packages on Ubuntu.

2022-5-11


ea-openssl11

2022-5-4


ea-cpanel-tools
  • ZC-9960: Add new container package ea-redis62 to the manifest.
ea-redis62
  • ZC-9895: Add container-based redis.
libcurl
  • EA-10666: Update libcurl from 7.82.0 to 7.83.0.
  • EA-10537: Update libcurl from 7.81.0 to 7.82.0.
ea-nodejs16
  • EA-10667: Update ea-nodejs16 from 16.14.2 to 16.15.0.
scl-sourceguardian
  • EA-10672: Update Sourceguardian to support PHP 8.1.
ea-oniguruma
  • EA-10674: Update ea-oniguruma from 6.9.7.1 to 6.9.8.

2022-4-27


ea-ruby27-passenger
  • EA-10531: Suppress No such file or directory warning during install.
ea-podman
  • ZC-9877: Add backup/restore sub commands, and manage backup exclude file.
  • ZC-9909: Add /scripts/removeacct Hook.

2022-4-20


ea-memcached16
  • ZC-8430: Add container-based memcached.
ea-passenger-src
  • EA-10642: Update ea-passenger-src from 6.0.10 to 6.0.13.
ea-podman
  • ZC-9651: Add initial support for container-based packages.
ea-podman-repo
  • ZC-9651: Add initial support for container-based packages.
Ruby 2.7
  • EA-10620: Update ea-ruby27 from 2.7.5 to 2.7.6.
    • ea-ruby27
    • ea-ruby27-meta
    • ea-ruby27-rubygem-mizuho
    • ea-ruby27-rubygem-nokogiri
    • ea-ruby27-rubygem-rack
    • ea-ruby27-rubygem-sqlite3
ea-tomcat85
  • ZC-9892: Set unpackWARs to false initially.
ea-tomcat100
  • ZC-9892: Correct default deployOnStartup, Set unpackWARs to false initially.
ea-nginx-njs
  • EA-10645: Update ea-nginx-njs from v0.7.2 to v0.7.3
ea-nginx-gzip
  • ZC-9902: Remove conflict w/ brotli.
ea-nginx-brotli
  • ZC-9902: Remove conflict w/ gzip.
scl-ioncube11
  • EA-10640: Update scl-ioncube11 from 11.0.0 to 11.0.1.
scl-sourceguardian
  • EA-10641: Update scl-sourceguardian from 12.1.2 to 13.0.3.
ea-php74
  • EA-10633: Update ea-php74 from 7.4.28 to 7.4.29.
ea-php74-meta
  • EA-10633: Update ea-php74 from 7.4.28 to 7.4.29.
ea-php80
  • EA-10636: Update ea-php80 from 8.0.17 to 8.0.18.
ea-php80-meta
  • EA-10636: Update ea-php80 from 8.0.17 to 8.0.18.
ea-php81
  • EA-10634: Update ea-php81 from 8.1.4 to 8.1.5.
ea-php81-meta
  • EA-10634: Update ea-php81 from 8.1.4 to 8.1.5.

2022-4-13


ea-nginx
  • ZC-9698: Proxy robots.txt (and favicon) since it can be dynamic (e.g. wordpress + .htaccess).
  • ZC-9844: Add flag file to use micro caching as the cache defaults.
  • EA-10535: Fix SSL certificate handling for custom mail subdomains.

2022-4-6


ea-cpanel-tools
  • EA-10600: Add PHP 7.3 to EOL recommendations.
  • ZC-9886: Add meta info to target-os profile and update EA4-production manifest when updating EA4 manifest.
ea-tomcat85
  • EA-10604: Update ea-tomcat85 from 8.5.77 to 8.5.78.
ea-ruby27-passenger
  • EA-10603: Update ea-ruby27-passenger from 6.0.12 to 6.0.13.

2022-3-30


ea-apache24-mod-qos
  • ZC-9726: Initial build.
ea-nginx-njs
  • ZC-9697: Initial version.
ea-nginx
  • EA-10590: Disable nginx-debug service on Ubuntu.
  • ZC-9645: Added ea-nginx-ngxdev to make it easier to make a package for NGINX modules.
ea-cpanel-tools
  • ZC-9849: Add pkg_manifest.json and add target to ea_current_to_profile.
  • ZC-9854: Add ea-nginx-njs to additional packages and recommendations.

2022-3-23


ea-modsec2-rules-owasp-crs
  • EA-10394: Update version in meta_OWASP3.yaml.
ea-nginx
  • EA-10576: Fix server configuration template proxy caching setting.
ea-tomcat85
  • EA-10578: Update ea-tomcat85 from 8.5.76 to 8.5.77.
ea-php80
  • EA-10575: Update ea-php80 from 8.0.16 to 8.0.17.
ea-php80-meta
  • EA-10575: Update ea-php80 from 8.0.16 to 8.0.17.
ea-php81
  • EA-10577: Update ea-php81 from 8.1.3 to 8.1.4.
ea-php81-meta
  • EA-10577: Update ea-php81 from 8.1.3 to 8.1.4.
ea-nodejs16
  • EA-10588: Update ea-nodejs16 from 16.13.1 to 16.14.2 (with fix for OpenSSL via CVE-2022-0778 )
ea-cpanel-tools
  • ZC-9823: Set php default version to 8.0.
ea-profiles-cpanel
  • ZC-9823: Update profiles for PHP8.

2022-3-17


ea-openssl11
  • EA-10564: Update ea-openssl11 from 1.1.1m to 1.1.1n (with fix for CVE-2022-0778).

2022-3-16


ea-nginx-brotli
  • ZC-9697: Initial version.
ea-nginx
  • ZC-9756: Build Brotli module.
ea-cpanel-tools
  • ZC-9758: Add ea-nginx-brotli to additional packages list and do http2-like toggle off recommendations.
  • ZC-9759: Add container_based_packages list to ea4-metainfo.json.
ea-nginx-gzip
  • ZC-9757: Changes for co-existence with Brotli compression.
ea-apache24
ea-ruby27-libuv
  • EA-10547: Update ea-ruby27-libuv from 1.44.0 to 1.44.1.
ea-ngx-brotli-src
  • ZC-9757: Initial commit.

2022-3-9


litespeed
  • EA-10532: Update litespeed to 8.0.1.
    • scl-php54
    • scl-php55
    • scl-php56
    • scl-php70
    • scl-php71
    • scl-php72
    • scl-php73
    • ea-php74
    • ea-php80
    • ea-php81
ea-ruby27-libuv
  • EA-10536: Update ea-ruby27-libuv from 1.43.0 to 1.44.0.
ea-nginx
  • ZC-9800: Change edit of cpanel-proxy conf to include (akin to how we do cloudflare.conf)
  • EA-10493: The server_name directive needs the public/external IP on systems configured to use a NAT.
  • EA-10515: Add symlink protection for DCV validation folders for service subdomains.
ea-apache2-config
  • ZC-9750: Add support for secure use of proxying to Apache with mod_remoteip.

2022-3-3


ea-nghttp2
  • EA-10520: Update ea-nghttp2 from 1.46.0 to 1.47.0.
ea-tomcat85
  • EA-10523: Update ea-tomcat85 from 8.5.75 to 8.5.76.
apr
  • EA-10477: Check for NULL mutex in apr_global_mutex_child_init.

2022-2-23


ea-nginx
  • EA-10285: Have ea-nginx config --all update user configs in parallel.
  • EA-10503: Update standalone config to ensure 404 for non-existent php files.
ea-php74
  • EA-10504: Update ea-php74 from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php74-meta
  • EA-10504: Update ea-php74 from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php80
  • EA-10505: Update ea-php80 from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php80-meta
  • EA-10505: Update ea-php80 from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php81
  • EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).
ea-php81-meta
  • EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).

2022-2-16


ea-freetds
  • EA-10495: Update ea-freetds from 1.3.8 to 1.3.9.
  • EA-10490: Update ea-freetds from 1.3.7 to 1.3.8.
ea-nginx
  • EA-10489: Update ea-nginx from 1.21.5 to 1.21.6.

2022-2-9


ea-apache2-config
  • ZC-9700: Do not use predictable cPanel-localhost header.
  • EA-9800: Ensure httpd.conf has newline before UserDir when mod_passenger installed.
  • EA-9376: Fix piped logging with log style set to common.
ea-nginx
  • ZC-9700: Do not use predictable cPanel-localhost header.
  • ZC-9700: Ensure random value is regenerated if missing or older than 30 minutes; ensure users can not see the value.
  • EA-10464: Avoid redirect to https for service subdomain DCV validation.
ea-freetds
  • EA-10479: Update ea-freetds from 1.3.6 to 1.3.7.
ea-nginx-gzip
  • Initial release
  • ZC-9722: Remove always-implicit text/html from gzip_types.
ea-php74
  • EA-10461: Patch PHP-FPM/OpCache for kill_all_lockers bug (74709).
ea-cpanel-tools
  • ZC-9690: Add ea-nginx-gzip to Additional Packages list.

2022-2-2


ea-apache2
  • EA-10245: Add patch to change log level of accept mutex.
ea-nginx
  • EA-10294: Add caching mechanism for wordpress info.

2022-1-26


ea-nginx
  • ZC-9661: Configure SSL w/ system cert when domain does not have its own cert.
  • EA-10283: Only perform regex check for wordpress login cookies when the URI matches a known wordpress login path.
ea-php80
  • EA-10447: Update ea-php80 from 8.0.14 to 8.0.15.
ea-php80-meta
  • EA-10447: Update ea-php80 from 8.0.14 to 8.0.15.
ea-php81
  • EA-10451: Update ea-php81 from 8.1.1 to 8.1.2.
ea-php81-meta
  • EA-10451: Update ea-php81 from 8.1.1 to 8.1.2.
scl-ruby24-passenger
  • EA-10436: Update scl-ruby24-passenger from 6.0.7 to 6.0.12.
ea-tomcat85
  • EA-10449: Update ea-tomcat85 from 8.5.73 to 8.5.75.
mod_security2
  • EA-10239: Increase compiler optimization level to help mitigate performance loss from large rulesets.

2022-1-20


scl-php73
  • ZC-9628: Ensure sqlite3 is linked into pdo_sqlite.so. Also corrected enchant build error.
ea-cpanel-tools
  • ZC-9636: Add recommends for ea-nginx-http2.
ea-profiles-cpanel
  • ZC-8539: Create Default NGINX® profile.
ea-nginx
  • EA-10428: Update ea-nginx from 1.21.4 to 1.21.5.
  • SEC-612: whm-server-status is accessible to the public when ea-nginx is in use.
ea-nginx-http2
  • ZC-9618: Initial release.

2022-1-12


ea-apache2-config
  • SEC-614: Remove conditional logging based on the cPanel-localhost header. This is a security change.
ea-cpanel-tools
  • ZC-9632: Prepare EA4 Additional Packages section for upcoming ea-nginx-http2 release.
ea-freetds
  • EA-10388: Update ea-freetds from 1.3.4 to 1.3.6.
ea-nginx
  • SEC-611: Set the server_tokens directive to OFF in nginx.conf. This is a security change.
  • ZC-9343: Change worker_processes to auto.
  • ZC-9343: Allow setting worker_processes via /etc/nginx/ea-nginx/settings.json file.
  • ZC-9343: When writing settings.json make it human readable.
  • ZC-7303: Support IP based requests (ZC-9586: only use an IP once).
  • ZC-9384: Use mycpanel.pem if it exists.
  • ZC-9615: IPv6 support for proxy subdomain redirect to https.
ea-php74
  • ZC-7454: Add support for php-sodium.
  • ZC-9611: Dependency issue with php-enchant.
  • ZC-9598: Fix global register problem for Ubuntu.
ea-php80
  • ZC-9605: Add support for php-sodium.
  • ZC-9611: Dependency issue with php-enchant.
  • ZC-9599: Fix Ubuntu 21 global regs problem.
ea-php81
  • ZC-9587: Add support for php-sodium.
  • ZC-9600: Fix Ubuntu 21 global regs problem.
ea-ruby27-libuv
  • EA-10407: Update ea-ruby27-libuv from 1.42.0 to 1.43.0.
libcurl
  • EA-10408: Update libcurl from 7.80.0 to 7.81.0.
mod_security2
  • ZC-9641: Rebuilt to include libcurl4 and libgnutls.
  • EA-10203: Add patch to fix memory leaks.
scl-ioncube10
  • ZC-9608: Fix build dependency for Ubuntu 21.
scl-php-pear
  • ZC-9547: Account for /usr/local/bin/pear target missing.
mod-suphp
  • ZC-9596: Changes to build on Ubuntu 21.

Additional Documentation