1. cPanel & WHM Documentation
  2. Change Logs
  3. Additional Change Logs
  4. EasyApache 4 Change Log 2022
whmadvanced ea4

EasyApache 4 Change Log 2022

Last modified: November 21, 2022

EasyApache 4 does not use versioning and organizes changes by date only.

Each entry contains the following information:

  1. The package that we changed.
  2. The case number for the change.
  3. A description of the change.

For more information about our GitHub repository, read our The EasyApache 4 Git Repository and Build Updates documentation.

2022-11-21

ea-nginx
  • EA-11049: Avoid server_names_hash warning

2022-11-16

ea-nginx
  • EA-11025: If user generated config is detected as bad after configuration, remove the config file to avoid taking all sites down
  • EA-10769: Allow custom config files to be moved across partitions when ea-nginx is installed

2022-11-9

ea-nodejs
  • EA-11040: Update ea-nodejs16 from 16.18.0 to 16.18.1 (with fix for CVE-2022-43548).
ea-openssl11
  • EA-11035: Update ea-openssl11 from 1.1.1q to 1.1.1s.
ea-nginx
  • EA-10670: Add better guards against bad userdata to configuration script.
  • EA-11004: Fix Passenger restart failures after reboot.
ea-apache24-mod-passenger
  • EA-11018: Fix Passenger instance registry directory for fresh installs.
  • EA-10997: Fix Passenger instance registry directory on Ubuntu.
ea-php74
ea-php74-meta

2022-11-2

ea-nginx-njs
  • EA-11017: Update ea-nginx-njs from 0.7.7 to 0.7.8.
ea-nginx
  • EA-10977: Fix could not build optimal server_names_hash warnings.
ea-php80
ea-php80-meta
ea-php81
ea-php81-meta
libcurl

2022-10-26

ea-cpanel-tools
  • ZC-10350: Update manifest.
ea-nginx
  • EA-10999: Update logic to check if service is listening on ports 80 or 443.
  • EA-10985: Drop logrotate configuration for domain logs since cpanellogd handles the rotation.
  • EA-11003: Update ea-nginx from 1.23.1 to 1.23.2.
ea-nodejs16
  • EA-10988: Update ea-nodejs16 from 16.17.1 to 16.18.0
mod_security2
  • ZC-10009: Add lua 5.4 support for AL9.

2022-10-19

ea-nginx
  • EA-10963: Ensure valid nginx configuration when no accounts are created on the system.
ea-tomcat85
  • EA-10980: Update ea-tomcat85 from 8.5.82 to 8.5.83.

2022-10-5

ea-php81
ea-php81-meta
ea-php80
ea-php80-meta
ea-php74
ea-php74-meta
ea-apache2-config
  • EA-10947: Use %{local}p to send correct port to splitlogs when piped logging is enabled.

2022-9-30

ea-nginx
  • EA-10959: Ensure valid nginx configuration when service subdomains are disabled.

2022-9-29

ea-apache2-config
  • EA-10935: Account for IPv6 addresses when setting up mod_remoteip.
  • EA-10912: Setup mod_remoteip to work with all the server IPs.
ea-nginx
  • EA-10671: Calculate server_names_hash_bucket_size and server_names_hash_max_size at config time.
  • EA-10913: “no resolver defined” error under a specific circumstance.
ea-nodejs16
ea-passenger-src
  • EA-10945: Update ea-passenger-src from 6.0.14 to 6.0.15.
ea-php80
  • ZC-10260: Link deb against libcurl 4 explicitly.
ea-php81
  • ZC-10260: Link deb against libcurl 4 explicitly.
ea-ruby27-passenger
  • EA-10945: ea-passenger-src was updated from 6.0.14 to 6.0.15.
ea-apache24-mod-passenger
  • EA-10945: ea-passenger-src was updated from 6.0.14 to 6.0.15.

2022-9-21

ea-modsec30
  • EA-10927: Update ea-modsec30 from 3.0.7 to 3.0.8.
scl-ioncube12
  • EA-10932: Update scl-ioncube12 from 12.0.1 to 12.0.2.

2022-9-7

libcurl
  • EA-10914: Update libcurl from 7.84.0 to 7.85.0 (with fix for CVE-2022-35252).
ea-php80
  • EA-10915: Update ea-php80 from 8.0.22 to 8.0.23.
ea-php80-meta
  • EA-10915: Update ea-php80 from 8.0.22 to 8.0.23.
ea-php81
  • EA-10916: Update ea-php81 from 8.1.9 to 8.1.10.
ea-php81-meta
  • EA-10916: Update ea-php81 from 8.1.9 to 8.1.10.

2022-8-31

ea-nginx
  • EA-10892: Avoid configuring shared IPs in multiple server blocks when configuring nginx asynchronously.
ea-nginx-njs
  • EA-10904: Update ea-nginx-njs from 0.7.6 to 0.7.7.

2022-8-24

ea-nghttp2
  • EA-10894: Update ea-nghttp2 from 1.48.0 to 1.49.0.
scl-ioncube12
  • ZC-10213: Initial package release.
ea-nginx
  • EA-10835: Increase POD and unit test coverage / minor bug fixes/improvements.

2022-8-17

ea-tomcat85
  • EA-10878: Update ea-tomcat85 from 8.5.81 to 8.5.82.
ea-apache2
  • EA-10825: Fix file ownership for ea-apache24-mod_socache_redis.
ea-nodejs16
  • EA-10881: Update ea-nodejs16 from 16.16.0 to 16.17.0.

2022-8-10

ea-php81
  • EA-10865: Update ea-php81 from 8.1.8 to 8.1.9.
ea-php81-meta
  • EA-10865: Update ea-php81 from 8.1.8 to 8.1.9.
ea-php80
  • EA-10864: Update ea-php80 from 8.0.21 to 8.0.22.
ea-php80-meta
  • EA-10864: Update ea-php80 from 8.0.21 to 8.0.22.

2022-8-3

ea-podman
  • ZC-10113: Persist image name to registered-containers.json file.

2022-7-27

ea-nginx
  • EA-10844: Update ea-nginx from 1.23.0 to 1.23.1.

2022-7-20

ea-ruby27-libuv
  • EA-10826: Update ea-ruby27-libuv from 1.44.1 to 1.44.2.
ea-nginx
  • EA-10824: Enforce scripts/ea-nginx config to obtain lock before proceeding with config.
ea-nginx-njs
  • EA-10836: Update ea-nginx-njs from 0.7.5 to 0.7.6.

2022-7-13

ea-php81
  • EA-10821: Update ea-php81 from 8.1.7 to 8.1.8 (with fix for CVE-2022-31627).
ea-php81-meta
  • EA-10821: Update ea-php81 from 8.1.7 to 8.1.8 (with fix for CVE-2022-31627).
ea-php80
  • EA-10820: Update ea-php80 from 8.0.20 to 8.0.21.
ea-php80-meta
  • EA-10820: Update ea-php80 from 8.0.20 to 8.0.21.
ea-nodejs16
  • EA-10822: Update ea-nodejs16 from 16.15.1 to 16.16.0.
ea-nginx
  • EA-10819: Provide flag to build nginx config synchronously.

2022-7-6

ea-libzip
  • EA-10807: Update ea-libzip from 1.9.0 to 1.9.2.
ea-ruby27-rubygem-rack
  • EA-10810: Update ea-ruby27-rubygem-rack from 2.2.3 to 2.2.4.
ea-openssl11
  • EA-10811: Update ea-openssl11 from 1.1.1p to 1.1.1q (with fix for CVE-2022-2097).

2022-6-29

ea-nghttp2
  • EA-10794: Update ea-nghttp2 from 1.47.0 to 1.48.0.
ea-nginx
  • EA-10795: Update ea-nginx from 1.22.0 to 1.23.0.
ea-nginx-njs
  • EA-10772: Update ea-nginx-njs from 0.7.4 to 0.7.5.
libcurl

2022-6-22

ea-libzip
  • EA-10770: Update ea-libzip from 1.8.0 to 1.9.0.
ea-ruby27-rubygem-sqlite3
  • EA-10771: Update ea-ruby27-rubygem-sqlite3 from 1.4.2 to 1.4.4.
ea-openssl11
  • EA-10773: Update ea-openssl11 from 1.1.1o to 1.1.1p (with fix for CVE-2022-2068)

2022-6-15

ea-apache24
ea-nodejs16
  • EA-10748: Update ea-nodejs16 from 16.15.0 to 16.15.1.
ea-tomcat85
  • EA-10761: Update ea-tomcat85 from 8.5.79 to 8.5.81.
ea-php74
ea-php74-meta
ea-php80
ea-php80-meta
ea-php81
ea-php81-meta
ea-podman
  • ZC-9993: Add script for dev/QA/smold4r to be able to test against internal docker hub.
ea-podman-repo
  • ZC-10010: Enable powertools on Rocky 8.
ea-nginx
  • ZC-9940: Change worker_processes default back to 1.
  • ZC-9940: Have worker_shutdown_timeout default to 10 seconds.

2022-6-1

ea-nginx
  • ZC-9931: Ensure that a pre-existing cache.json/settings.json is respected when ea-nginx is installed.
  • ZC-9371: Enable keepalive support.
  • ZC-9939: Optimize proxy sub-domain configuration.
  • ZC-9952: Allow setting worker_shutdown_timeout via /etc/nginx/ea-nginx/settings.json.
  • EA-10673: Increase proxy_headers_hash_bucket_size to 128 in cpanel-proxy-xt.conf.
  • EA-10736: Update ea-nginx from 1.21.6 to v1.22.0.
ea-modsec30-connector-nginx
  • EA-10724: Update ea-modsec30-connector-nginx from 1.0.2 to 1.0.3.
ea-tomcat85
  • EA-10726: Update ea-tomcat85 from 8.5.78 to 8.5.79.
ea-nginx
  • EA-10736: Update ea-nginx from 1.21.6 to 1.22.0.
ea-nginx-njs
  • EA-10737: Update ea-nginx-njs from 0.7.3 to 0.7.4.
ea-modsec-30
  • EA-10739: Update ea-modsec30 from 3.0.6 to 3.0.7.

2022-5-18

ea-apache24-mod-qos
  • EA-10709: Update ea-apache24-mod-qos from 11.71 to 11.72.
ea-passenger-src
  • EA-10700: Update ea-passenger-src from 6.0.13 to 6.0.14.
ea-php80
  • EA-10703: Update ea-php80 from 8.0.18 to 8.0.19.
ea-php80-meta
  • EA-10703: Update ea-php80 from 8.0.18 to 8.0.19.
ea-php81
  • EA-10705: Update ea-php81 from 8.1.5 to 8.1.6.
ea-php81-meta
  • EA-10705: Update ea-php81 from 8.1.5 to 8.1.6.
ea-redis62
  • EA-10686: Update ea-redis62 from 6.2.6 to 6.2.7.
ea-tomcat100
  • EA-10698: Update ea-tomcat100 from 10.0.14 to 10.0.20.
libcurl
  • EA-10702: Update libcurl from 7.83.0 to 7.83.1.
ea-ruby27-passenger
  • EA-10701: Update ea-ruby27-passenger from 6.0.13 to 6.0.14.
ea-cpanel-tools
  • ZC-9918: Correct names of packages on Ubuntu.

2022-5-11

ea-openssl11

2022-5-4

ea-cpanel-tools
  • ZC-9960: Add new container package ea-redis62 to the manifest.
ea-redis62
  • ZC-9895: Add container-based redis.
libcurl
  • EA-10666: Update libcurl from 7.82.0 to 7.83.0.
  • EA-10537: Update libcurl from 7.81.0 to 7.82.0.
ea-nodejs16
  • EA-10667: Update ea-nodejs16 from 16.14.2 to 16.15.0.
scl-sourceguardian
  • EA-10672: Update Sourceguardian to support PHP 8.1.
ea-oniguruma
  • EA-10674: Update ea-oniguruma from 6.9.7.1 to 6.9.8.

2022-4-27

ea-ruby27-passenger
  • EA-10531: Suppress No such file or directory warning during install.
ea-podman
  • ZC-9877: Add backup/restore sub commands, and manage backup exclude file.
  • ZC-9909: Add /scripts/removeacct Hook.

2022-4-20

ea-memcached16
  • ZC-8430: Add container-based memcached.
ea-passenger-src
  • EA-10642: Update ea-passenger-src from 6.0.10 to 6.0.13.
ea-podman
  • ZC-9651: Add initial support for container-based packages.
ea-podman-repo
  • ZC-9651: Add initial support for container-based packages.
Ruby 2.7
  • EA-10620: Update ea-ruby27 from 2.7.5 to 2.7.6.
    • ea-ruby27
    • ea-ruby27-meta
    • ea-ruby27-rubygem-mizuho
    • ea-ruby27-rubygem-nokogiri
    • ea-ruby27-rubygem-rack
    • ea-ruby27-rubygem-sqlite3
ea-tomcat85
  • ZC-9892: Set unpackWARs to false initially.
ea-tomcat100
  • ZC-9892: Correct default deployOnStartup, Set unpackWARs to false initially.
ea-nginx-njs
  • EA-10645: Update ea-nginx-njs from v0.7.2 to v0.7.3
ea-nginx-gzip
  • ZC-9902: Remove conflict w/ brotli.
ea-nginx-brotli
  • ZC-9902: Remove conflict w/ gzip.
scl-ioncube11
  • EA-10640: Update scl-ioncube11 from 11.0.0 to 11.0.1.
scl-sourceguardian
  • EA-10641: Update scl-sourceguardian from 12.1.2 to 13.0.3.
ea-php74
  • EA-10633: Update ea-php74 from 7.4.28 to 7.4.29.
ea-php74-meta
  • EA-10633: Update ea-php74 from 7.4.28 to 7.4.29.
ea-php80
  • EA-10636: Update ea-php80 from 8.0.17 to 8.0.18.
ea-php80-meta
  • EA-10636: Update ea-php80 from 8.0.17 to 8.0.18.
ea-php81
  • EA-10634: Update ea-php81 from 8.1.4 to 8.1.5.
ea-php81-meta
  • EA-10634: Update ea-php81 from 8.1.4 to 8.1.5.

2022-4-13

ea-nginx
  • ZC-9698: Proxy robots.txt (and favicon) since it can be dynamic (e.g. wordpress + .htaccess).
  • ZC-9844: Add flag file to use micro caching as the cache defaults.
  • EA-10535: Fix SSL certificate handling for custom mail subdomains.

2022-4-6

ea-cpanel-tools
  • EA-10600: Add PHP 7.3 to EOL recommendations.
  • ZC-9886: Add meta info to target-os profile and update EA4-production manifest when updating EA4 manifest.
ea-tomcat85
  • EA-10604: Update ea-tomcat85 from 8.5.77 to 8.5.78.
ea-ruby27-passenger
  • EA-10603: Update ea-ruby27-passenger from 6.0.12 to 6.0.13.

2022-3-30

ea-apache24-mod-qos
  • ZC-9726: Initial build.
ea-nginx-njs
  • ZC-9697: Initial version.
ea-nginx
  • EA-10590: Disable nginx-debug service on Ubuntu.
  • ZC-9645: Added ea-nginx-ngxdev to make it easier to make a package for NGINX modules.
ea-cpanel-tools
  • ZC-9849: Add pkg_manifest.json and add target to ea_current_to_profile.
  • ZC-9854: Add ea-nginx-njs to additional packages and recommendations.

2022-3-23

ea-modsec2-rules-owasp-crs
  • EA-10394: Update version in meta_OWASP3.yaml.
ea-nginx
  • EA-10576: Fix server configuration template proxy caching setting.
ea-tomcat85
  • EA-10578: Update ea-tomcat85 from 8.5.76 to 8.5.77.
ea-php80
  • EA-10575: Update ea-php80 from 8.0.16 to 8.0.17.
ea-php80-meta
  • EA-10575: Update ea-php80 from 8.0.16 to 8.0.17.
ea-php81
  • EA-10577: Update ea-php81 from 8.1.3 to 8.1.4.
ea-php81-meta
  • EA-10577: Update ea-php81 from 8.1.3 to 8.1.4.
ea-nodejs16
  • EA-10588: Update ea-nodejs16 from 16.13.1 to 16.14.2 (with fix for OpenSSL via CVE-2022-0778 )
ea-cpanel-tools
  • ZC-9823: Set php default version to 8.0.
ea-profiles-cpanel
  • ZC-9823: Update profiles for PHP8.

2022-3-17

ea-openssl11
  • EA-10564: Update ea-openssl11 from 1.1.1m to 1.1.1n (with fix for CVE-2022-0778).

2022-3-16

ea-nginx-brotli
  • ZC-9697: Initial version.
ea-nginx
  • ZC-9756: Build Brotli module.
ea-cpanel-tools
  • ZC-9758: Add ea-nginx-brotli to additional packages list and do http2-like toggle off recommendations.
  • ZC-9759: Add container_based_packages list to ea4-metainfo.json.
ea-nginx-gzip
  • ZC-9757: Changes for co-existence with Brotli compression.
ea-apache24
ea-ruby27-libuv
  • EA-10547: Update ea-ruby27-libuv from 1.44.0 to 1.44.1.
ea-ngx-brotli-src
  • ZC-9757: Initial commit.

2022-3-9

litespeed
  • EA-10532: Update litespeed to 8.0.1.
    • scl-php54
    • scl-php55
    • scl-php56
    • scl-php70
    • scl-php71
    • scl-php72
    • scl-php73
    • ea-php74
    • ea-php80
    • ea-php81
ea-ruby27-libuv
  • EA-10536: Update ea-ruby27-libuv from 1.43.0 to 1.44.0.
ea-nginx
  • ZC-9800: Change edit of cpanel-proxy conf to include (akin to how we do cloudflare.conf)
  • EA-10493: The server_name directive needs the public/external IP on systems configured to use a NAT.
  • EA-10515: Add symlink protection for DCV validation folders for service subdomains.
ea-apache2-config
  • ZC-9750: Add support for secure use of proxying to Apache with mod_remoteip.

2022-3-3

ea-nghttp2
  • EA-10520: Update ea-nghttp2 from 1.46.0 to 1.47.0.
ea-tomcat85
  • EA-10523: Update ea-tomcat85 from 8.5.75 to 8.5.76.
apr
  • EA-10477: Check for NULL mutex in apr_global_mutex_child_init.

2022-2-23

ea-nginx
  • EA-10285: Have ea-nginx config --all update user configs in parallel.
  • EA-10503: Update standalone config to ensure 404 for non-existent php files.
ea-php74
  • EA-10504: Update ea-php74 from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php74-meta
  • EA-10504: Update ea-php74 from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php80
  • EA-10505: Update ea-php80 from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php80-meta
  • EA-10505: Update ea-php80 from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php81
  • EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).
ea-php81-meta
  • EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).

2022-2-16

ea-freetds
  • EA-10495: Update ea-freetds from 1.3.8 to 1.3.9.
  • EA-10490: Update ea-freetds from 1.3.7 to 1.3.8.
ea-nginx
  • EA-10489: Update ea-nginx from 1.21.5 to 1.21.6.

2022-2-9

ea-apache2-config
  • ZC-9700: Do not use predictable cPanel-localhost header.
  • EA-9800: Ensure httpd.conf has newline before UserDir when mod_passenger installed.
  • EA-9376: Fix piped logging with log style set to common.
ea-nginx
  • ZC-9700: Do not use predictable cPanel-localhost header.
  • ZC-9700: Ensure random value is regenerated if missing or older than 30 minutes; ensure users can not see the value.
  • EA-10464: Avoid redirect to https for service subdomain DCV validation.
ea-freetds
  • EA-10479: Update ea-freetds from 1.3.6 to 1.3.7.
ea-nginx-gzip
  • Initial release
  • ZC-9722: Remove always-implicit text/html from gzip_types.
ea-php74
  • EA-10461: Patch PHP-FPM/OpCache for kill_all_lockers bug (74709).
ea-cpanel-tools
  • ZC-9690: Add ea-nginx-gzip to Additional Packages list.

2022-2-2

ea-apache2
  • EA-10245: Add patch to change log level of accept mutex.
ea-nginx
  • EA-10294: Add caching mechanism for wordpress info.

2022-1-26

ea-nginx
  • ZC-9661: Configure SSL w/ system cert when domain does not have its own cert.
  • EA-10283: Only perform regex check for wordpress login cookies when the URI matches a known wordpress login path.
ea-php80
  • EA-10447: Update ea-php80 from 8.0.14 to 8.0.15.
ea-php80-meta
  • EA-10447: Update ea-php80 from 8.0.14 to 8.0.15.
ea-php81
  • EA-10451: Update ea-php81 from 8.1.1 to 8.1.2.
ea-php81-meta
  • EA-10451: Update ea-php81 from 8.1.1 to 8.1.2.
scl-ruby24-passenger
  • EA-10436: Update scl-ruby24-passenger from 6.0.7 to 6.0.12.
ea-tomcat85
  • EA-10449: Update ea-tomcat85 from 8.5.73 to 8.5.75.
mod_security2
  • EA-10239: Increase compiler optimization level to help mitigate performance loss from large rulesets.

2022-1-20

scl-php73
  • ZC-9628: Ensure sqlite3 is linked into pdo_sqlite.so. Also corrected enchant build error.
ea-cpanel-tools
  • ZC-9636: Add recommends for ea-nginx-http2.
ea-profiles-cpanel
  • ZC-8539: Create Default NGINX® profile.
ea-nginx
  • EA-10428: Update ea-nginx from 1.21.4 to 1.21.5.
  • SEC-612: whm-server-status is accessible to the public when ea-nginx is in use.
ea-nginx-http2
  • ZC-9618: Initial release.

2022-1-12

ea-apache2-config
  • SEC-614: Remove conditional logging based on the cPanel-localhost header. This is a security change.
ea-cpanel-tools
  • ZC-9632: Prepare EA4 Additional Packages section for upcoming ea-nginx-http2 release.
ea-freetds
  • EA-10388: Update ea-freetds from 1.3.4 to 1.3.6.
ea-nginx
  • SEC-611: Set the server_tokens directive to OFF in nginx.conf. This is a security change.
  • ZC-9343: Change worker_processes to auto.
  • ZC-9343: Allow setting worker_processes via /etc/nginx/ea-nginx/settings.json file.
  • ZC-9343: When writing settings.json make it human readable.
  • ZC-7303: Support IP based requests (ZC-9586: only use an IP once).
  • ZC-9384: Use mycpanel.pem if it exists.
  • ZC-9615: IPv6 support for proxy subdomain redirect to https.
ea-php74
  • ZC-7454: Add support for php-sodium.
  • ZC-9611: Dependency issue with php-enchant.
  • ZC-9598: Fix global register problem for Ubuntu.
ea-php80
  • ZC-9605: Add support for php-sodium.
  • ZC-9611: Dependency issue with php-enchant.
  • ZC-9599: Fix Ubuntu 21 global regs problem.
ea-php81
  • ZC-9587: Add support for php-sodium.
  • ZC-9600: Fix Ubuntu 21 global regs problem.
ea-ruby27-libuv
  • EA-10407: Update ea-ruby27-libuv from 1.42.0 to 1.43.0.
libcurl
  • EA-10408: Update libcurl from 7.80.0 to 7.81.0.
mod_security2
  • ZC-9641: Rebuilt to include libcurl4 and libgnutls.
  • EA-10203: Add patch to fix memory leaks.
scl-ioncube10
  • ZC-9608: Fix build dependency for Ubuntu 21.
scl-php-pear
  • ZC-9547: Account for /usr/local/bin/pear target missing.
mod-suphp
  • ZC-9596: Changes to build on Ubuntu 21.

Additional Documentation