1. cPanel & WHM Documentation
  2. Change Logs
  3. Additional Change Logs
  4. EasyApache 4 Change Log 25
whmadvanced ea4

EasyApache 4 Change Log 25

Last modified: 2025 August 20

The EasyApache 4 change log is the authoritative list of changes to the EA4 product.

Each entry contains the following information:

  1. The package that we changed.
  2. The case number for the change.
  3. A description of the change.

For more information about our GitHub repository, read our The EasyApache 4 Git Repository and Build Updates documentation.

25.26

2025 August 20

ea-php84
  • EA-13049: Update ea-php84 from 8.4.10 to 8.4.11.
ea-php84-meta
  • EA-13049: Update ea-php84 from 8.4.10 to 8.4.11.
ea-memcached16
  • EA-13047: Update ea-memcached16 from 1.6.38 to 1.6.39.
ea-apr-util
  • EA4-53: Fix Almalinux 10 mysql-devel dependency and patch problems.
ea-libtidy
  • EA4-52: Address libcurl.so.4 missing on Alma 10.
ea-cpanel-tools
  • ZC-12937: Remove CentOS 6 from manifest.
ea-liblsapi
  • EA4-52: Address libcurl.so.4 missing on Alma 10.
  • EA4-52: Update ea-liblsapi to 1.1-81.
ea-apache24-mod_lsapi
  • EA4-52: Address libcurl.so.4 missing on Alma 10.
  • EA4-52: Update ea-apache24-mod_lsapi to 1.1-81.
ea-apache24-mod_suphp
  • EA4-96: Remove exec_code_asuser.
ea-apache24-mod_ruid2
  • EA4-97: Adjust exec_code_asuser.
ea-apache24-mpm_itk
  • EA4-99: Adjust exec_code_asuser.
ea-tomcat101
  • EA-13066: Update ea-tomcat101 from 10.1.43 to 10.1.44.
ea-nodejs22
  • EA-13050: Update ea-nodejs22 from 22.17.1 to 22.18.0.
ea-libcurl
  • EA-13029: Update ea-libcurl from 8.14.1 to 8.15.0.
ea-nodejs20
  • EA-13026: Update ea-nodejs20 from 20.19.3 to 20.19.4 (with fix for CVE-2025-27210).
ea-apache24-mod_security2
  • EA-13061: Update ea-apache24-mod_security2 from 2.9.11 to 2.9.12 (with fix for CVE-2025-54571).
ea-profiles-cpanel
  • EA4-104: Add EA4 Profile to support PHP 8.3 in WP Squared.

25.25

2025 August 11

The Apache CVE fix in the EasyApache 25.24 release introduced stricter SNI handling. This change caused HTTP 421 errors in many reverse proxy setups. We reverted this update to give Apache and our team time to fix the issue. The latest Apache updates ensure compatibility, but we recommend that you confirm your CDNs and NGINX configurations in Plesk, cPanel, and WP Squared. For more information, read our Apache 2.4.65 Update support document.

ea-apache24
  • EA4-90: Update to 65 proper.
  • EA4-82: Update 421 workaround to 65.
  • EA-13044: Update ea-apache24 from 2.4.64 to 2.4.65.
ea-nginx
  • EA4-62: Disable proxy_ssl_session_reuse for more reliable SNI.
yum-plugin-universal-hooks
  • CPANEL-48519: Make dnf-plugin-universal-hooks work for AlmaLinux 10 and beyond.

25.24

2025 July 17

ea-apache24
ea-nginx
  • EA-13028: Address 421 Misdirected Request error from Apache 2.4.64 SNI fix.

25.23

2025 July 16

ea-redis62
ea-tomcat101
  • EA-13004: Update ea-tomcat101 from 10.1.42 to 10.1.43.
ea-valkey72
  • EA-13013: Update ea-valkey72 from 7.2.9 to 7.2.10.
ea-nginx-njs
  • EA-13015: Update ea-nginx-njs from 0.9.0 to 0.9.1.
ea-nginx
  • ZC-12940: Fix warnings from /etc/nginx/ea-nginx/meta/apache.

25.22

2025 July 9

ea-apache24-mod_security2
  • EA-12994: Update ea-apache24-mod_security2 from 2.9.10 to 2.9.11 (with fix for CVE-2025-52891).
ea-php84
ea-php84-meta
ea-php83
ea-php83-meta
ea-php82
ea-php82-meta
ea-php81
ea-php81-meta
ea-nginx-headers-more
  • EA-13002: Update ea-nginx-headers-more from 0.38 to 0.39.
ea-libtidy
  • EA-12999: Update libtidy from 5.4.0 to 5.8.0.

25.21

2025 July 2

ea-nghttp2
  • EA-12941: Update ea-nghttp2 from 1.65.0 to 1.66.0.
ea-freetds
  • EA-12942: Update ea-freetds from 1.5.2 to 1.5.4.
ea-nodejs20
  • EA-12943: Update ea-nodejs20 from 20.19.2 to 20.19.3.
ea-nodejs22
  • EA-12944: Update ea-nodejs22 from 22.16.0 to 22.17.0.

25.20

2025 June 18

ea-tomcat101

25.19

2025 June 11

ea-apache24-config
  • ZC-12882: Re-order traffic log IP format to match actual use.
  • ZC-12888: Switch domlogs from %h to %a to take advantage of real-ip.
ea-nginx
  • ZC-12882: Re-order traffic log IP format to match actual use.
ea-php83
  • EA-12917: Update ea-php83 from 8.3.21 to 8.3.22.
ea-php83-meta
  • EA-12917: Update ea-php83 from 8.3.21 to 8.3.22.
ea-php84
  • EA-12918: Update ea-php84 from 8.4.7 to 8.4.8.
ea-php84-meta
  • EA-12918: Update ea-php84 from 8.4.7 to 8.4.8.
ea-libcurl
  • EA-12914: Update ea-libcurl from 8.14.0 to 8.14.1 (with fix for CVE-2025-5399).
ea-libzip
  • EA-12888: Update ea-libzip from 1.11.2 to 1.11.4.

25.18

2025 June 4

ea-ruby27-rubygem-rack
  • EA-12904: Update ea-ruby27-rubygem-rack from 2.2.15 to 2.2.17.
ea-modsec2-rules-owasp-crs
  • ZC-12873: Correct issue with WHM Modsecurity UI.
ea-apache24
  • ZC-12836: Add dependency for remote IP module.
ea-apache24-config
  • ZC-12837: Create Cloudflare mod_remoteip configuration.
ea-modsec30-rules-owasp-crs
  • ZC-12871: Correct the metadata.
ea-apache24-mod_security2
ea-libcurl
ea-freetds
  • EA-12900: Update ea-freetds from 1.5.1 to 1.5.2.

25.17

2025 May 28

ea-ruby27-rubygem-rack
  • EA-12886: Update ea-ruby27-rubygem-rack from 2.2.15 to 2.2.16.
ea-nodejs22
  • EA-12884: Update ea-nodejs22 from 22.15.1 to 22.16.0.
ea-modsec30-connector-nginx
  • EA-12883: Update ea-modsec30-connector-nginx from 1.0.3 to 1.0.4.
ea-ioncube14
  • EA-12882: Update ea-ioncube14 from 14.4.0 to 14.4.1.
ea-modsec2-rules-owasp-crs
  • ZC-12841: Update metadata and automate process.

25.16

2025 May 21

ea-ruby27-rubygem-rack
  • EA-12871: Update ea-ruby27-rubygem-rack from 2.2.14 to 2.2.15.
ea-tomcat101
  • EA-12865: Update ea-tomcat101 from 10.1.40 to 10.1.41.
ea-nodejs20
ea-nodejs22
ea-apr
  • EA-12870: Update apr from 1.7.5 to 1.7.6.

25.15

2025 May 14

ea-apache24-config
  • ZC-12824: Fix traffic logs when not using piped logs on Apache®.
ea-nginx
  • ZC-12825: Correct traffic log issue when not using piped logs.
ea-apache24-mod_security2
  • EA-12853: Update ea-apache24-mod_security2 from 2.9.7 to 2.9.8.
ea-nginx-njs
  • EA-12846: Update ea-nginx-njs from 0.8.10 to 0.9.0.
ea-ruby27-rubygem-rack
  • EA-12849: Update ea-ruby27-rubygem-rack from 2.2.13 to 2.2.14.
ea-php84
  • EA-12851: Update ea-php84 from 8.4.6 to 8.4.7.
ea-php84-meta
  • EA-12851: Update ea-php84 from 8.4.6 to 8.4.7.
ea-php83
  • EA-12852: Update ea-php83 from 8.3.20 to 8.3.21.
ea-php83-meta
  • EA-12852: Update ea-php83 from 8.3.20 to 8.3.21.
ea-cpanel-tools
  • ZC-12829: Add Ubuntu® 24 to OS aliases in preparation of future support.
  • ZC-12826: Add AlmaLinux OS 10 to OS aliases in preparation of future support.

25.14

2025 April 30

ea-apache24-config
  • ZC-12792: Add minimum version ea-cpanel-tools dep.
  • ZC-12790: Fix random pthread crashing.
ea-libxml2
ea-freetds
  • EA-12830: Update ea-freetds from 1.4.9 to 1.5.1.
ea-nodejs20
  • EA-12831: Update ea-nodejs20 from 20.19.0 to 20.19.1.
ea-nodejs22
  • EA-12832: Update ea-nodejs22 from v22.14.0 to v22.15.0
ea-valkey72
  • EA-12833: Update ea-valkey72 from 7.2.8 to 7.2.9 (with fix for CVE-2025-21605).
ea-redis62
  • EA-12834: Update ea-redis62 from 6.2.17 to 6.2.18.
ea-ruby27-libuv
  • EA-12835: Update ea-ruby27-libuv from 1.50.0 to 1.51.0.

25.13

2025 April 24

ea-php83
  • EA-12807: Update ea-php83 from 8.3.19 to 8.3.20.
ea-php83-meta
  • EA-12807: Update ea-php83 from 8.3.19 to 8.3.20.
ea-php84
  • EA-12808: Update ea-php84 from 8.4.5 to 8.4.6.
ea-php84-meta
  • EA-12808: Update ea-php84 from 8.4.5 to 8.4.6.
ea-cpanel-tools
  • ZC-12736: Create webserver traffic logging directory.
  • ZC-12775: Temporarily remove wpsquared.site from tech_domains.
ea-apache24-config
  • ZC-12754: Collect traffic logs.
ea-nginx
  • ZC-12765: Collect traffic logs.

25.12

2025 April 16

ea-passenger-src
  • EA-12801: Update ea-passenger-src from 6.0.26 to 6.0.27.
ea-apache24-mod-passenger
  • EA-12801: ea-passenger-src was updated from 6.0.26 to 6.0.27.
ea-nginx-passenger
  • EA-12801: ea-passenger-src was updated from 6.0.26 to 6.0.27.
ea-nginx-njs
  • EA-12805: Update ea-nginx-njs from 0.8.9 to 0.8.10.
ea-tomcat101
  • EA-12806: Update ea-tomcat101 from 10.1.39 to 10.1.40 (with fix for CVE-2025-31651).
ea-apache24-config
  • ZC-12113: Default mutex over to pthreads.

25.11

2025 April 2

ea-scl-php-pear
  • ZC-12719: Remove creation of /usr/local/bin/pear.
ea-nodejs18
  • EA-12786: Update ea-nodejs18 from 18.20.7 to 18.20.8.
ea-php-cli
  • ZC-12720: Add a placebo version of /usr/local/bin/pear.
ea-apache24-config
  • ZC-12629: Handle tech_domains in vhost config.
ea-memcached16
  • EA-12781: Update ea-memcached16 from 1.6.37 to 1.6.38.

25.10

2025 March 19

ea-php81
ea-php81-meta
ea-php82
ea-php82-meta
ea-php83
ea-php83-meta
ea-php84
ea-php84-meta
ea-libicu
  • EA-12770: Update ea-libicu from 76.1 to 77.1.
ea-nodejs20
  • EA-12771: Update ea-nodejs20 from 20.18.3 to 20.19.0.

25.9

2025 March 12

ea-cpanel-tools
  • ZC-12668: Add tech domains list.
ea-ruby27-rubygem-rack
  • EA-12755: Update ea-ruby27-rubygem-rack from 2.2.12 to 2.2.13 (with fix for CVE-2025-27610).
ea-tomcat101
  • EA-12756: Update ea-tomcat101 from 10.1.36 to 10.1.39 (with fix for CVE-2024-56337).

25.8

2025 March 5

ea-scl-sourceguardian
  • EA-12740: Update ea-scl-sourceguardian from 16.0.1 to 16.0.2.
  • ZC-12618: Build for ea-php84.
ea-nghttp2
  • EA-12743: Update ea-nghttp2 from 1.64.0 to 1.65.0.
ea-ruby27-rubygem-rack
  • EA-12745: Update ea-ruby27-rubygem-rack from 2.2.11 to 2.2.12 (with fix for CVE-2025-27111).
ea-cpanel-tools
  • ZC-12618: Update manifest for sourceguardian84.

25.7

2025 February 26

ea-tomcat101
  • EA-12722: Update ea-tomcat101 from 10.1.35 to 10.1.36.
ea-ioncube14
  • ZC-12574: Add PHP 8.4 support.
ea-cpanel-tools
  • ZC-12574: Update manifest for ioncube 14’s PHP 8.4
ea-passenger-src
  • EA-12725: Update ea-passenger-src from 6.0.25 to 6.0.26 (with fix for CVE-2025-26803).
ea-nodejs18
  • EA-12726: Update ea-nodejs18 from 18.20.6 to 18.20.7
ea-nginx
  • ZC-12573: Create setting to include or not include cloudflare.conf.
ea-memcached16
  • EA-12728: Update ea-memcached16 from 1.6.36 to 1.6.37.
ea-apache24-mod-passenger
  • EA-12725: ea-passenger-src was updated from 6.0.25 to 6.0.26.
ea-nginx-passenger
  • EA-12725: ea-passenger-src was updated from 6.0.25 to 6.0.26.

25.6

2025 February 19

ea-libcurl
  • EA-12710: Update ea-libcurl from 8.12.0 to 8.12.1.
ea-passenger-src
  • EA-12705: Update ea-passenger-src from 6.0.24 to 6.0.25.
ea-apache24-mod-passenger
  • EA-12705: Adjust for ea-passenger-src updating from 6.0.24 to 6.0.25.
ea-libxml2
ea-scl-sourceguardian
  • EA-12711: Update ea-scl-sourceguardian from 16.0.0 to 16.0.1.
ea-php83
  • EA-12708: Update ea-php83 from 8.3.16 to 8.3.17.
ea-php83-meta
  • EA-12708: Update ea-php83 from 8.3.16 to 8.3.17.
ea-php84
  • EA-12709: Update ea-php84 from 8.4.3 to 8.4.4.
ea-php84-meta
  • EA-12709: Update ea-php84 from 8.4.3 to 8.4.4.
ea-ruby27-rubygem-rack
  • EA-12706: Update ea-ruby27-rubygem-rack from 2.2.10 to 2.2.11.
ea-ruby27-libuv
  • EA-12684: Update ea-ruby27-libuv from 1.48.0 to 1.50.0.
ea-nginx-headers-more
  • EA-12691: Update ea-nginx-headers-more from 0.37 to 0.38.

25.5

2025 February 13

ea-podman
  • ZC-12610: Add compat layer for ULC function that was removed.
ea-nodejs20
  • EA-12692: Update ea-nodejs20 from 20.18.2 to 20.18.3.
ea-nodejs22
  • EA-12694: Update ea-nodejs22 from 22.13.1 to 22.14.0.
ea-libcurl
ea-ioncube14
  • EA-12675: Update ea-ioncube14 from 14.0.0 to 14.4.0.
ea-scl-sourceguardian
  • EA-12679: Update ea-scl-sourceguardian from 15.0.2 to 16.0.0.
ea-passenger-src
  • EA-12681: Update ea-passenger-src from 6.0.23 to 6.0.24.
ea-memcached16
  • EA-12685: Update ea-memcached16 from 1.6.34 to 1.6.36.
ea-tomcat101
  • EA-12693: Update ea-tomcat101 from 10.1.34 to 10.1.35 (with fix for CVE-2024-56337).
ea-nginx
  • EA-12703: Update ea-nginx from 1.26.2 to 1.26.3 (with fix for CVE-2025-23419).
ea-nginx-echo
  • EA-12703: Build against ea-nginx version 1.26.3.
ea-nginx-headers-more
  • EA-12703: Build against ea-nginx version 1.26.3.
ea-nginx-njs
  • EA-12703: Build against ea-nginx version 1.26.3.
ea-nginx-passenger
  • EA-12703: Build against ea-nginx version 1.26.3.
ea-modsec30-connector-nginx
  • EA-12703: Build against ea-nginx version 1.26.3.

25.4

2025 January 29

ea-nodejs18
ea-nodejs20
ea-nodejs22
ea-apache24
  • EA-12665: Update ea-apache24 from 2.4.62 to 2.4.63.

25.3

2025 January 22

ea-nginx-njs
  • EA-12640: Update ea-nginx-njs from 0.8.8 to 0.8.9.
ea-php84
  • EA-12652: Update ea-php84 from 8.4.2 to 8.4.3.
ea-php84-meta
  • EA-12652: Update ea-php84 from 8.4.2 to 8.4.3.
ea-php83
  • EA-12650: Update ea-php83 from 8.3.15 to 8.3.16.
ea-php83-meta
  • EA-12650: Update ea-php83 from 8.3.15 to 8.3.16.

25.2

2025 January 15

ea-valkey72
ea-ioncube13
  • ZC-12409: Fix conflicts with other ionCube versions.
ea-ioncube14
  • ZC-12409: Fix conflicts with other ionCube versions.
ea-libicu
  • EA-12626: Update ea-libicu from 69.1 to 76.1.
ea-nodejs22
  • EA-12635: Update ea-nodejs22 from 22.12.0 to 22.13.0.
ea-php74
  • ZC-12495: Do gcc like newer PHPs so that the libicu update won’t break the build.
ea-php80
  • ZC-12495: Do gcc like newer PHPs so that the libicu update won’t break the build.
ea-php81
  • ZC-12495: Do gcc like newer PHPs so that the libicu update won’t break the build.

25.1

2025 January 8

ea-php84
  • EA-12619: Update ea-php84 from 8.4.1 to 8.4.2.
ea-php84-meta
  • EA-12619: Update ea-php84 from 8.4.1 to 8.4.2.
ea-php83
  • EA-12618: Update ea-php83 from 8.3.14 to 8.3.15.
ea-php83-meta
  • EA-12618: Update ea-php83 from 8.3.14 to 8.3.15.
ea-php82
  • EA-12617: Update ea-php82 from 8.2.26 to 8.2.27.
ea-php82-meta
  • EA-12617: Update ea-php82 from 8.2.26 to 8.2.27.
ea-memcached16
  • EA-12620: Update ea-memcached16 from 1.6.33 to 1.6.34.
ea-oniguruma
  • EA-12622: Update ea-oniguruma from 6.9.9 to 6.9.10.
ea-redis62
  • EA-12624: Update ea-redis62 from 6.2.16 to 6.2.17 (with fix for CVE-2024-46981).
ea-apache24-mod-qos
  • EA-12623: Update ea-apache24-mod-qos from 11.75 to 11.76.

Additional Documentation