EasyApache 4 Change Log 2022
Last modified: December 21, 2022
EasyApache 4 does not use versioning and organizes changes by date only.
Each entry contains the following information:
- The package that we changed.
- The case number for the change.
- A description of the change.
For more information about our GitHub repository, read our The EasyApache 4 Git Repository and Build Updates documentation.
2022-12-21
ea-nginx
- EA-11104: Update
ea-nginx
from 1.23.2 to 1.23.3. - EA-10891: Refactor logging initialization to be its own sub.
- EA-11093: Increase nginx buffer when calculating
server_names_hash_bucket_size
. - EA-11078: Fix uninitialized value warning for non-user requests when the
USER_ID
touch file exists.
ea-nodejs16
- EA-11105: Update
ea-nodejs16
from 16.18.1 to 16.19.0.
ea-php82
- ZC-10495: Update to official PHP 8.2 release.
ea-php82-meta
- ZC-10495: Update to official PHP 8.2 release.
ea-cpanel-tools
- ZC-10494: Update PHP INI directive data for PHP 8.2 changes.
- ZC-10548: have
ea_current_to_profile
ignore-debuginfo
packages under--target-os
.
mod_suphp
- ZC-10381: Add
ea-php82
.
ea-apache24-mod_lsapi
- ZC-10388: Add
ea-php82
to hardcoded list that rpm/switch_lsapi uses to build/etc/container/php.handler
.
scl-libc-client
- ZC-10359: Build for
ea-php82
.
scl-php-pear
- ZC-10359: Support for
ea-php82
.
2022-12-14
mod_security2
- EA-11091: Fix linking issues on C6/C7.
scl-ioncube12
- EA-11094: Update
scl-ioncube12
from 12.0.3 to 12.0.4.
2022-12-7
ea-modsec2-rules-owasp-crs
- EA-10944: Update
ea-modsec2-rules-owasp-crs
from 3.3.2 to 3.3.4 (with fixes for CVE-2022-39955, CVE-2022-39956, CVE-2022-39957 and CVE-2022-39958.)
ea-nginx
- EA-10874: Remove fallback logic in
scripts::ea_nginx::_get_application_paths()
. - EA-10574: Remove deprecated configure option
--with-ipv6
. - EA-11069: Increase open files limit for master and worker processes.
- EA-11048: Move
/var/log/nginx
to a backup location during uninstall.
ea-nginx-njs
- EA-11059: Update
ea-nginx-njs
from 0.7.8 to 0.7.9.
scl-php73
- EA-11039: Ensure
php.ini
is marked as a config file on Ubuntu.
ea-php74
- EA-11039: Ensure
php.ini
is marked as a config file on Debian-based systems.
ea-php80
- EA-11074: Update
ea-php80
from 8.0.25 to 8.0.26. - EA-11039: Ensure
php.ini
is marked as a config file on Debian-based systems.
ea-php80-meta
- EA-11039: Ensure
php.ini
is marked as a config file on Debian-based systems.
ea-php81
- EA-11070: Update
ea-php81
from 8.1.12 to 8.1.13. - EA-11039: Ensure
php.ini
is marked as a config file on Debian-based systems.
ea-php81-meta
- EA-11070: Update
ea-php81
from 8.1.12 to 8.1.13.
Ruby 2.7
- EA-11073: Update
ea-ruby27
from 2.7.6 to 2.7.7 (with fix for CVE-2021-33621.)ea-ruby27
ea-ruby27-meta
ea-ruby27-rubygem-mizuho
ea-ruby27-rubygem-nokogiri
ea-ruby27-rubygem-rack
ea-ruby27-rubygem-sqlite3
ea-tomcat85
- EA-11072: Update
ea-tomcat85
from 8.5.83 to 8.5.84.
mod_security2
- EA-11068: Update
mod_security2
from 2.9.3 to 2.9.6 (with fix for CVE-2022-39956.)
scl-ioncube12
- EA-11079: Update
scl-ioncube12
from 12.0.2 to 12.0.3.
2022-11-21
ea-nginx
- EA-11049: Avoid
server_names_hash
warning.
2022-11-16
ea-nginx
- EA-11025: If user generated config is detected as bad after configuration, remove the config file to avoid taking all sites down.
- EA-10769: Allow custom config files to be moved across partitions when
ea-nginx
is installed.
2022-11-9
ea-nodejs
- EA-11040: Update
ea-nodejs16
from 16.18.0 to 16.18.1 (with fix for CVE-2022-43548).
ea-openssl11
- EA-11035: Update
ea-openssl11
from 1.1.1q to 1.1.1s.
ea-nginx
- EA-10670: Add better guards against bad userdata to configuration script.
- EA-11004: Fix Passenger restart failures after reboot.
ea-apache24-mod-passenger
- EA-11018: Fix Passenger instance registry directory for fresh installs.
- EA-10997: Fix Passenger instance registry directory on Ubuntu.
ea-php74
- EA-11038: Update
ea-php74
from 7.4.32 to 7.4.33 (with fixes for CVE-2022-31630 and CVE-2022-37454).
ea-php74-meta
- EA-11038: Update
ea-php74-meta
from 7.4.32 to 7.4.33 (with fixes for CVE-2022-31630 and CVE-2022-37454).
2022-11-2
ea-nginx-njs
- EA-11017: Update
ea-nginx-njs
from 0.7.7 to 0.7.8.
ea-nginx
- EA-10977: Fix
could not build optimal server_names_hash
warnings.
ea-php80
- EA-11020: Update
ea-php80
from 8.0.24 to 8.0.25 (with fixes for CVE-2022-31630 and CVE-2022-37454).
ea-php80-meta
- EA-11020: Update
ea-php80
from 8.0.24 to 8.0.25 (with fixes for CVE-2022-31630 and CVE-2022-37454).
ea-php81
- EA-11021: Update
ea-php81
from 8.1.11 to 8.1.12 (with fixes for CVE-2022-31630 and CVE-2022-37454).
ea-php81-meta
- EA-11021: Update
ea-php81
from 8.1.11 to 8.1.12 (with fixes for CVE-2022-31630 and CVE-2022-37454).
libcurl
- EA-11016: Update
libcurl
from 7.85.0 to 7.86.0 (with fixes for CVE-2022-32221, CVE-2022-35260, CVE-2022-42915, and CVE-2022-42916).
2022-10-26
ea-cpanel-tools
- ZC-10350: Update manifest.
ea-nginx
- EA-10999: Update logic to check if service is listening on ports
80
or443
. - EA-10985: Drop logrotate configuration for domain logs since
cpanellogd
handles the rotation. - EA-11003: Update
ea-nginx
from 1.23.1 to 1.23.2.
ea-nodejs16
- EA-10988: Update
ea-nodejs16
from 16.17.1 to 16.18.0
mod_security2
- ZC-10009: Add lua 5.4 support for AL9.
2022-10-19
ea-nginx
- EA-10963: Ensure valid nginx configuration when no accounts are created on the system.
ea-tomcat85
- EA-10980: Update
ea-tomcat85
from 8.5.82 to 8.5.83.
2022-10-5
ea-php81
- EA-10958: Update
ea-php81
from 8.1.10 to 8.1.11 (with fixes for CVE-2022-31628 and CVE-2022-31629).
ea-php81-meta
- EA-10958: Update
ea-php81
from 8.1.10 to 8.1.11 (with fixes for CVE-2022-31628 and CVE-2022-31629).
ea-php80
- EA-10961: Update
ea-php80
from 8.0.23 to 8.0.24 (with fixes for CVE-2022-31628 and CVE-2022-31629).
ea-php80-meta
- EA-10961: Update
ea-php80
from 8.0.23 to 8.0.24 (with fixes for CVE-2022-31628 and CVE-2022-31629).
ea-php74
- EA-10957: Update
ea-php74
from 7.4.30 to 7.4.32 (with fixes for CVE-2022-31628 and CVE-2022-31629).
ea-php74-meta
- EA-10957: Update
ea-php74
from 7.4.30 to 7.4.32 (with fixes for CVE-2022-31628 and CVE-2022-31629).
ea-apache2-config
- EA-10947: Use
%{local}p
to send correct port to splitlogs when piped logging is enabled.
2022-9-30
ea-nginx
- EA-10959: Ensure valid nginx configuration when service subdomains are disabled.
2022-9-29
ea-apache2-config
- EA-10935: Account for IPv6 addresses when setting up
mod_remoteip
. - EA-10912: Setup
mod_remoteip
to work with all the server IPs.
ea-nginx
- EA-10671: Calculate
server_names_hash_bucket_size
andserver_names_hash_max_size
at config time. - EA-10913: “no resolver defined” error under a specific circumstance.
ea-nodejs16
- EA-10948: Update
ea-nodejs16
from 16.17.0 to 16.17.1 (with fixes for CVE-2022-32212, CVE-2022-32213, CVE-2022-35255, and CVE-2022-35256.)
ea-passenger-src
- EA-10945: Update
ea-passenger-src
from 6.0.14 to 6.0.15.
ea-php80
- ZC-10260: Link deb against libcurl 4 explicitly.
ea-php81
- ZC-10260: Link deb against libcurl 4 explicitly.
ea-ruby27-passenger
- EA-10945:
ea-passenger-src
was updated from 6.0.14 to 6.0.15.
ea-apache24-mod-passenger
- EA-10945:
ea-passenger-src
was updated from 6.0.14 to 6.0.15.
2022-9-21
ea-modsec30
- EA-10927: Update
ea-modsec30
from 3.0.7 to 3.0.8.
scl-ioncube12
- EA-10932: Update
scl-ioncube12
from 12.0.1 to 12.0.2.
2022-9-7
libcurl
- EA-10914: Update
libcurl
from 7.84.0 to 7.85.0 (with fix for CVE-2022-35252).
ea-php80
- EA-10915: Update
ea-php80
from 8.0.22 to 8.0.23.
ea-php80-meta
- EA-10915: Update
ea-php80
from 8.0.22 to 8.0.23.
ea-php81
- EA-10916: Update
ea-php81
from 8.1.9 to 8.1.10.
ea-php81-meta
- EA-10916: Update
ea-php81
from 8.1.9 to 8.1.10.
2022-8-31
ea-nginx
- EA-10892: Avoid configuring shared IPs in multiple server blocks when configuring nginx asynchronously.
ea-nginx-njs
- EA-10904: Update
ea-nginx-njs
from 0.7.6 to 0.7.7.
2022-8-24
ea-nghttp2
- EA-10894: Update
ea-nghttp2
from 1.48.0 to 1.49.0.
scl-ioncube12
- ZC-10213: Initial package release.
ea-nginx
- EA-10835: Increase POD and unit test coverage / minor bug fixes/improvements.
2022-8-17
ea-tomcat85
- EA-10878: Update
ea-tomcat85
from 8.5.81 to 8.5.82.
ea-apache2
- EA-10825: Fix file ownership for
ea-apache24-mod_socache_redis
.
ea-nodejs16
- EA-10881: Update
ea-nodejs16
from 16.16.0 to 16.17.0.
2022-8-10
ea-php81
- EA-10865: Update
ea-php81
from 8.1.8 to 8.1.9.
ea-php81-meta
- EA-10865: Update
ea-php81
from 8.1.8 to 8.1.9.
ea-php80
- EA-10864: Update
ea-php80
from 8.0.21 to 8.0.22.
ea-php80-meta
- EA-10864: Update
ea-php80
from 8.0.21 to 8.0.22.
2022-8-3
ea-podman
- ZC-10113: Persist image name to
registered-containers.json
file.
2022-7-27
ea-nginx
- EA-10844: Update
ea-nginx
from 1.23.0 to 1.23.1.
2022-7-20
ea-ruby27-libuv
- EA-10826: Update
ea-ruby27-libuv
from 1.44.1 to 1.44.2.
ea-nginx
- EA-10824: Enforce
scripts/ea-nginx config
to obtain lock before proceeding with config.
ea-nginx-njs
- EA-10836: Update
ea-nginx-njs
from 0.7.5 to 0.7.6.
2022-7-13
ea-php81
- EA-10821: Update
ea-php81
from 8.1.7 to 8.1.8 (with fix for CVE-2022-31627).
ea-php81-meta
- EA-10821: Update
ea-php81
from 8.1.7 to 8.1.8 (with fix for CVE-2022-31627).
ea-php80
- EA-10820: Update
ea-php80
from 8.0.20 to 8.0.21.
ea-php80-meta
- EA-10820: Update
ea-php80
from 8.0.20 to 8.0.21.
ea-nodejs16
- EA-10822: Update
ea-nodejs16
from 16.15.1 to 16.16.0.
ea-nginx
- EA-10819: Provide flag to build nginx config synchronously.
2022-7-6
ea-libzip
- EA-10807: Update
ea-libzip
from 1.9.0 to 1.9.2.
ea-ruby27-rubygem-rack
- EA-10810: Update
ea-ruby27-rubygem-rack
from 2.2.3 to 2.2.4.
ea-openssl11
- EA-10811: Update
ea-openssl11
from 1.1.1p to 1.1.1q (with fix for CVE-2022-2097).
2022-6-29
ea-nghttp2
- EA-10794: Update
ea-nghttp2
from 1.47.0 to 1.48.0.
ea-nginx
- EA-10795: Update
ea-nginx
from 1.22.0 to 1.23.0.
ea-nginx-njs
- EA-10772: Update
ea-nginx-njs
from 0.7.4 to 0.7.5.
libcurl
- EA-10790: Update
libcurl
from 7.83.1 to 7.84.0 (with fixes for CVE-2022-32208, CVE-2022-32207, CVE-2022-32206, and CVE-2022-32205).
2022-6-22
ea-libzip
- EA-10770: Update
ea-libzip
from 1.8.0 to 1.9.0.
ea-ruby27-rubygem-sqlite3
- EA-10771: Update
ea-ruby27-rubygem-sqlite3
from 1.4.2 to 1.4.4.
ea-openssl11
- EA-10773: Update
ea-openssl11
from 1.1.1o to 1.1.1p (with fix for CVE-2022-2068)
2022-6-15
ea-apache24
- EA-10756: Update
ea-apache2
from 2.4.53 to 2.4.54 (with fixes for CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, and CVE-2022-31813).
ea-nodejs16
- EA-10748: Update
ea-nodejs16
from 16.15.0 to 16.15.1.
ea-tomcat85
- EA-10761: Update
ea-tomcat85
from 8.5.79 to 8.5.81.
ea-php74
- EA-10757: Update ea-php74 from 7.4.29 to 7.4.30 (with fixes for CVE-2022-31626 and CVE-2022-31625).
ea-php74-meta
- EA-10757: Update ea-php74 from 7.4.29 to 7.4.30 (with fixes for CVE-2022-31626 and CVE-2022-31625).
ea-php80
- EA-10760: Update
ea-php80
from 8.0.19 to 8.0.20 (with fixes for CVE-2022-31626 and CVE-2022-31625)
ea-php80-meta
- EA-10760: Update
ea-php80
from 8.0.19 to 8.0.20 (with fixes for CVE-2022-31626 and CVE-2022-31625)
ea-php81
- EA-10758: Update
ea-php81
from 8.1.6 to 8.1.7 (with fixes for CVE-2022-31626 and CVE-2022-31625)
ea-php81-meta
- EA-10758: Update
ea-php81
from 8.1.6 to 8.1.7 (with fixes for CVE-2022-31626 and CVE-2022-31625)
ea-podman
- ZC-9993: Add script for dev/QA/smold4r to be able to test against internal docker hub.
ea-podman-repo
- ZC-10010: Enable powertools on Rocky 8.
ea-nginx
- ZC-9940: Change
worker_processes
default back to1
. - ZC-9940: Have
worker_shutdown_timeout
default to 10 seconds.
2022-6-1
ea-nginx
- ZC-9931: Ensure that a pre-existing
cache.json
/settings.json
is respected whenea-nginx
is installed. - ZC-9371: Enable
keepalive
support. - ZC-9939: Optimize proxy sub-domain configuration.
- ZC-9952: Allow setting
worker_shutdown_timeout
via/etc/nginx/ea-nginx/settings.json
. - EA-10673: Increase
proxy_headers_hash_bucket_size
to 128 incpanel-proxy-xt.conf
. - EA-10736: Update
ea-nginx
from 1.21.6 to v1.22.0.
ea-modsec30-connector-nginx
- EA-10724: Update
ea-modsec30-connector-nginx
from 1.0.2 to 1.0.3.
ea-tomcat85
- EA-10726: Update
ea-tomcat85
from 8.5.78 to 8.5.79.
ea-nginx
- EA-10736: Update
ea-nginx
from 1.21.6 to 1.22.0.
ea-nginx-njs
- EA-10737: Update
ea-nginx-njs
from 0.7.3 to 0.7.4.
ea-modsec-30
- EA-10739: Update
ea-modsec30
from 3.0.6 to 3.0.7.
2022-5-18
ea-apache24-mod-qos
- EA-10709: Update
ea-apache24-mod-qos
from 11.71 to 11.72.
ea-passenger-src
- EA-10700: Update
ea-passenger-src
from 6.0.13 to 6.0.14.
ea-php80
- EA-10703: Update
ea-php80
from 8.0.18 to 8.0.19.
ea-php80-meta
- EA-10703: Update
ea-php80
from 8.0.18 to 8.0.19.
ea-php81
- EA-10705: Update
ea-php81
from 8.1.5 to 8.1.6.
ea-php81-meta
- EA-10705: Update
ea-php81
from 8.1.5 to 8.1.6.
ea-redis62
- EA-10686: Update
ea-redis62
from 6.2.6 to 6.2.7.
ea-tomcat100
- EA-10698: Update
ea-tomcat100
from 10.0.14 to 10.0.20.
libcurl
- EA-10702: Update
libcurl
from 7.83.0 to 7.83.1.
ea-ruby27-passenger
- EA-10701: Update
ea-ruby27-passenger
from 6.0.13 to 6.0.14.
ea-cpanel-tools
- ZC-9918: Correct names of packages on Ubuntu.
2022-5-11
ea-openssl11
- EA-10676: Update
ea-openssl11
from 1.1.1n to 1.1.1o (with fixes for CVE-2022-1473 and CVE-2022-1292)
2022-5-4
ea-cpanel-tools
- ZC-9960: Add new container package
ea-redis62
to the manifest.
ea-redis62
- ZC-9895: Add container-based redis.
libcurl
- EA-10666: Update
libcurl
from 7.82.0 to 7.83.0. - EA-10537: Update
libcurl
from 7.81.0 to 7.82.0.
ea-nodejs16
- EA-10667: Update
ea-nodejs16
from 16.14.2 to 16.15.0.
scl-sourceguardian
- EA-10672: Update Sourceguardian to support PHP 8.1.
ea-oniguruma
- EA-10674: Update
ea-oniguruma
from 6.9.7.1 to 6.9.8.
2022-4-27
ea-ruby27-passenger
- EA-10531: Suppress
No such file or directory
warning during install.
ea-podman
- ZC-9877: Add backup/restore sub commands, and manage backup exclude file.
- ZC-9909: Add
/scripts/removeacct
Hook.
2022-4-20
ea-memcached16
- ZC-8430: Add container-based
memcached
.
ea-passenger-src
- EA-10642: Update
ea-passenger-src
from 6.0.10 to 6.0.13.
ea-podman
- ZC-9651: Add initial support for container-based packages.
ea-podman-repo
- ZC-9651: Add initial support for container-based packages.
Ruby 2.7
- EA-10620: Update
ea-ruby27
from 2.7.5 to 2.7.6.ea-ruby27
ea-ruby27-meta
ea-ruby27-rubygem-mizuho
ea-ruby27-rubygem-nokogiri
ea-ruby27-rubygem-rack
ea-ruby27-rubygem-sqlite3
ea-tomcat85
- ZC-9892: Set
unpackWARs
to false initially.
ea-tomcat100
- ZC-9892: Correct default
deployOnStartup
, SetunpackWARs
to false initially.
ea-nginx-njs
- EA-10645: Update
ea-nginx-njs
from v0.7.2 to v0.7.3
ea-nginx-gzip
- ZC-9902: Remove conflict w/ brotli.
ea-nginx-brotli
- ZC-9902: Remove conflict w/ gzip.
scl-ioncube11
- EA-10640: Update
scl-ioncube11
from 11.0.0 to 11.0.1.
scl-sourceguardian
- EA-10641: Update
scl-sourceguardian
from 12.1.2 to 13.0.3.
ea-php74
- EA-10633: Update
ea-php74
from 7.4.28 to 7.4.29.
ea-php74-meta
- EA-10633: Update
ea-php74
from 7.4.28 to 7.4.29.
ea-php80
- EA-10636: Update
ea-php8
0 from 8.0.17 to 8.0.18.
ea-php80-meta
- EA-10636: Update
ea-php8
0 from 8.0.17 to 8.0.18.
ea-php81
- EA-10634: Update
ea-php81
from 8.1.4 to 8.1.5.
ea-php81-meta
- EA-10634: Update
ea-php81
from 8.1.4 to 8.1.5.
2022-4-13
ea-nginx
- ZC-9698: Proxy
robots.txt
(and favicon) since it can be dynamic (e.g. wordpress +.htaccess
). - ZC-9844: Add flag file to use micro caching as the cache defaults.
- EA-10535: Fix SSL certificate handling for custom mail subdomains.
2022-4-6
ea-cpanel-tools
- EA-10600: Add PHP 7.3 to EOL recommendations.
- ZC-9886: Add meta info to target-os profile and update EA4-production manifest when updating EA4 manifest.
ea-tomcat85
- EA-10604: Update
ea-tomcat85
from 8.5.77 to 8.5.78.
ea-ruby27-passenger
- EA-10603: Update
ea-ruby27-passenger
from 6.0.12 to 6.0.13.
2022-3-30
ea-apache24-mod-qos
- ZC-9726: Initial build.
ea-nginx-njs
- ZC-9697: Initial version.
ea-nginx
- EA-10590: Disable
nginx-debug
service on Ubuntu. - ZC-9645: Added
ea-nginx-ngxdev
to make it easier to make a package for NGINX modules.
ea-cpanel-tools
- ZC-9849: Add
pkg_manifest.json
and add target toea_current_to_profile
. - ZC-9854: Add
ea-nginx-njs
to additional packages and recommendations.
2022-3-23
ea-modsec2-rules-owasp-crs
- EA-10394: Update version in
meta_OWASP3.yaml
.
ea-nginx
- EA-10576: Fix server configuration template proxy caching setting.
ea-tomcat85
- EA-10578: Update
ea-tomcat85
from 8.5.76 to 8.5.77.
ea-php80
- EA-10575: Update
ea-php80
from 8.0.16 to 8.0.17.
ea-php80-meta
- EA-10575: Update
ea-php80
from 8.0.16 to 8.0.17.
ea-php81
- EA-10577: Update
ea-php81
from 8.1.3 to 8.1.4.
ea-php81-meta
- EA-10577: Update
ea-php81
from 8.1.3 to 8.1.4.
ea-nodejs16
- EA-10588: Update
ea-nodejs16
from 16.13.1 to 16.14.2 (with fix for OpenSSL via CVE-2022-0778 )
ea-cpanel-tools
- ZC-9823: Set php default version to 8.0.
ea-profiles-cpanel
- ZC-9823: Update profiles for PHP8.
2022-3-17
ea-openssl11
- EA-10564: Update
ea-openssl11
from 1.1.1m to 1.1.1n (with fix for CVE-2022-0778).
2022-3-16
ea-nginx-brotli
- ZC-9697: Initial version.
ea-nginx
- ZC-9756: Build Brotli module.
ea-cpanel-tools
- ZC-9758: Add
ea-nginx-brotli
to additional packages list and do http2-like toggle off recommendations. - ZC-9759: Add
container_based_packages
list toea4-metainfo.json
.
ea-nginx-gzip
- ZC-9757: Changes for co-existence with Brotli compression.
ea-apache24
- EA-10550: Update
ea-apache2
from 2.4.52 to 2.4.53 (with fixes for CVE-2022-23943, CVE-2022-22721, CVE-2022-22720, and CVE-2022-22719).
ea-ruby27-libuv
- EA-10547: Update
ea-ruby27-libuv
from 1.44.0 to 1.44.1.
ea-ngx-brotli-src
- ZC-9757: Initial commit.
2022-3-9
litespeed
- EA-10532: Update
litespeed
to 8.0.1.scl-php54
scl-php55
scl-php56
scl-php70
scl-php71
scl-php72
scl-php73
ea-php74
ea-php80
ea-php81
ea-ruby27-libuv
- EA-10536: Update
ea-ruby27-libuv
from 1.43.0 to 1.44.0.
ea-nginx
- ZC-9800: Change edit of cpanel-proxy conf to include (akin to how we do
cloudflare.conf
) - EA-10493: The
server_name
directive needs the public/external IP on systems configured to use a NAT. - EA-10515: Add symlink protection for DCV validation folders for service subdomains.
ea-apache2-config
- ZC-9750: Add support for secure use of proxying to Apache with
mod_remoteip
.
2022-3-3
ea-nghttp2
- EA-10520: Update
ea-nghttp2
from 1.46.0 to 1.47.0.
ea-tomcat85
- EA-10523: Update
ea-tomcat85
from 8.5.75 to 8.5.76.
apr
- EA-10477: Check for
NULL
mutex inapr_global_mutex_child_init
.
2022-2-23
ea-nginx
- EA-10285: Have
ea-nginx config --all
update user configs in parallel. - EA-10503: Update standalone config to ensure 404 for non-existent php files.
ea-php74
- EA-10504: Update
ea-php74
from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php74-meta
- EA-10504: Update
ea-php74
from 7.4.27 to 7.4.28 (with fix for CVE-2021-21708).
ea-php80
- EA-10505: Update
ea-php80
from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php80-meta
- EA-10505: Update
ea-php80
from 8.0.15 to 8.0.16 (with fix for CVE-2021-21708).
ea-php81
- EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).
ea-php81-meta
- EA-10506: Update ea-php81 from 8.1.2 to 8.1.3 (with fix for CVE-2021-21708).
2022-2-16
ea-freetds
- EA-10495: Update
ea-freetds
from 1.3.8 to 1.3.9. - EA-10490: Update
ea-freetds
from 1.3.7 to 1.3.8.
ea-nginx
- EA-10489: Update
ea-nginx
from 1.21.5 to 1.21.6.
2022-2-9
ea-apache2-config
- ZC-9700: Do not use predictable cPanel-localhost header.
- EA-9800: Ensure
httpd.conf
has newline beforeUserDir
whenmod_passenger
installed. - EA-9376: Fix piped logging with log style set to common.
ea-nginx
- ZC-9700: Do not use predictable cPanel-localhost header.
- ZC-9700: Ensure random value is regenerated if missing or older than 30 minutes; ensure users can not see the value.
- EA-10464: Avoid redirect to https for service subdomain DCV validation.
ea-freetds
- EA-10479: Update
ea-freetds
from 1.3.6 to 1.3.7.
ea-nginx-gzip
- Initial release
- ZC-9722: Remove always-implicit text/html from
gzip_types
.
ea-php74
- EA-10461: Patch PHP-FPM/OpCache for
kill_all_lockers
bug (74709).
ea-cpanel-tools
- ZC-9690: Add
ea-nginx-gzip
to Additional Packages list.
2022-2-2
ea-apache2
- EA-10245: Add patch to change log level of accept mutex.
ea-nginx
- EA-10294: Add caching mechanism for wordpress info.
2022-1-26
ea-nginx
- ZC-9661: Configure SSL w/ system cert when domain does not have its own cert.
- EA-10283: Only perform regex check for wordpress login cookies when the URI matches a known wordpress login path.
ea-php80
- EA-10447: Update
ea-php80
from 8.0.14 to 8.0.15.
ea-php80-meta
- EA-10447: Update
ea-php80
from 8.0.14 to 8.0.15.
ea-php81
- EA-10451: Update
ea-php81
from 8.1.1 to 8.1.2.
ea-php81-meta
- EA-10451: Update
ea-php81
from 8.1.1 to 8.1.2.
scl-ruby24-passenger
- EA-10436: Update
scl-ruby24-passenger
from 6.0.7 to 6.0.12.
ea-tomcat85
- EA-10449: Update
ea-tomcat85
from 8.5.73 to 8.5.75.
mod_security2
- EA-10239: Increase compiler optimization level to help mitigate performance loss from large rulesets.
2022-1-20
scl-php73
- ZC-9628: Ensure
sqlite3
is linked intopdo_sqlite.so
. Also corrected enchant build error.
ea-cpanel-tools
- ZC-9636: Add recommends for
ea-nginx-http2
.
ea-profiles-cpanel
- ZC-8539: Create Default NGINX® profile.
ea-nginx
- EA-10428: Update
ea-nginx
from 1.21.4 to 1.21.5. - SEC-612:
whm-server-status
is accessible to the public whenea-nginx
is in use.
ea-nginx-http2
- ZC-9618: Initial release.
2022-1-12
ea-apache2-config
- SEC-614: Remove conditional logging based on the cPanel-localhost header. This is a security change.
ea-cpanel-tools
- ZC-9632: Prepare EA4
Additional Packages
section for upcomingea-nginx-http2
release.
ea-freetds
- EA-10388: Update
ea-freetds
from 1.3.4 to 1.3.6.
ea-nginx
- SEC-611: Set the
server_tokens
directive toOFF
innginx.conf
. This is a security change. - ZC-9343: Change
worker_processes
toauto
. - ZC-9343: Allow setting
worker_processes
via/etc/nginx/ea-nginx/settings.json
file. - ZC-9343: When writing
settings.json
make it human readable. - ZC-7303: Support IP based requests (ZC-9586: only use an IP once).
- ZC-9384: Use
mycpanel.pem
if it exists. - ZC-9615: IPv6 support for proxy subdomain redirect to https.
ea-php74
- ZC-7454: Add support for php-sodium.
- ZC-9611: Dependency issue with php-enchant.
- ZC-9598: Fix global register problem for Ubuntu.
ea-php80
- ZC-9605: Add support for php-sodium.
- ZC-9611: Dependency issue with php-enchant.
- ZC-9599: Fix Ubuntu 21 global regs problem.
ea-php81
- ZC-9587: Add support for php-sodium.
- ZC-9600: Fix Ubuntu 21 global regs problem.
ea-ruby27-libuv
- EA-10407: Update
ea-ruby27-libuv
from 1.42.0 to 1.43.0.
libcurl
- EA-10408: Update
libcurl
from 7.80.0 to 7.81.0.
mod_security2
- ZC-9641: Rebuilt to include
libcurl4
andlibgnutls
. - EA-10203: Add patch to fix memory leaks.
scl-ioncube10
- ZC-9608: Fix build dependency for Ubuntu 21.
scl-php-pear
- ZC-9547: Account for
/usr/local/bin/pear
target missing.
mod-suphp
- ZC-9596: Changes to build on Ubuntu 21.