TSR Update

The following disclosure covers the Targeted Security Release 2013-06-05. Each vulnerability is assigned an internal case number which is reflected below.

Information regarding the cPanel Security Level rankings can be found here: http://go.cpanel.net/securitylevels

Case 68189

Summary

An arbitrary files read and unlink vulnerability in cPanel, WHM, and Webmail.

Security Rating

cPanel has assigned a Security Level of Important to this vulnerability.

Description

When logged into the cPanel, WHM, or Webmail interfaces an attacker could supply crafted query parameters that appear to be file uploads with unusual paths. In some subsystems, these invalid file upload parameters allowed viewing or deleting the file at the target path.
This vulnerability was discovered by the cPanel Security Team.
Solution

This issue is resolved in the following builds:

11.38.0.15 and greater
11.36.1.8 and greater
11.34.1.18 and greater
11.32.6.7 and greater

Please update your cPanel & WHM system to one of the aforementioned versions or the latest public release available. A full listing of published versions can always be found at http://httpupdate.cpanel.net/.

Case 68213

Summary

Self-XSS vulnerabilities in cPanel and WHM interfaces.

Security Rating

cPanel has assigned a Security Level of Minor to this vulnerability.

Description

Output filtering errors in the WHM Remote Nameserver interface and the cPanel FTP Management interface allowed JavaScript inputs to be returned to the browser without proper filtering.
cPanel includes a comprehensive protection mechanism against XSS and XSRF attacks called Security Tokens. Security Tokens protection is enabled by default in all installs of cPanel & WHM. When Security Tokens protection is enabled, an attacker intending to utilize this vulnerability must convince the victim to navigate their browser to the appropriate cPanel or WHM interface and manually input the JavaScript payload.
This vulnerability was discovered by Wong Chieh Yie (@wcypierrenet).

Solution

This issue is resolved in the following builds:

11.38.0.15 and greater
11.36.1.8 and greater
11.34.1.18 and greater
11.32.6.7 and greater

Please update your cPanel & WHM system to one of the aforementioned versions or the latest public release available. A full listing of published versions can always be found at http://httpupdate.cpanel.net/.

Case 68433

Summary

An XSS vulnerability in EntropyChat.

Security Rating

cPanel has assigned a Security Level of Minor to this vulnerability.

Description

EntropyChat is a web-based chat server available on cPanel & WHM systems. Output filtering errors in the EntropyChat server allowed one participant in a chat channel to send JavaScript payloads to other active participants in the chat channel.
This vulnerability was discovered by the cPanel Security Team.

Solution

This issue is resolved in the following builds:

11.38.0.15 and greater
11.36.1.8 and greater
11.34.1.18 and greater
11.32.6.7 and greater

Please update your cPanel & WHM system to one of the aforementioned versions or the latest public release available. A full listing of published versions can always be found at http://httpupdate.cpanel.net/.

Case 68645

Summary

An SQL injection vulnerability in cpmysqladmin.

Security Rating

cPanel has assigned a Security Level of Important to this vulnerability.

Description

Insufficient escaping of the user input parameter to multiple cpmysqladmin commands allowed a local attacker to execute arbitrary SQL commands with the MySQL access level of the root user.
This vulnerability was discovered by the cPanel Security Team.

Solution

This issue is resolved in the following builds:

11.38.0.15 and greater
11.36.1.8 and greater
11.34.1.18 and greater
11.32.6.7 and greater

Please update your cPanel & WHM system to one of the aforementioned versions or the latest public release available. A full listing of published versions can always be found at http://httpupdate.cpanel.net/.

Case 68733

Summary

A WHM arbitrary file read via brandingimg.cgi.

Security Rating

cPanel has assigned a Security Level of Minor to this vulnerability.

Description

An authenticated WHM reseller with limited ACLs could read the contents of arbitrary files on the system by supplying crafted query parameters to brandingimg.cgi. The file read is performed with the effective UID and GID of the reseller. This vulnerability revealed sensitive data only when the reseller had extremely limited access to the local filesystem outside of the WHM interface.
This vulnerability was discovered by the cPanel Security Team.

Solution

This issue is resolved in the following builds:

11.38.0.15 and greater
11.36.1.8 and greater
11.34.1.18 and greater
11.32.6.7 and greater

Please update your cPanel & WHM system to one of the aforementioned versions or the latest public release available. A full listing of published versions can always be found at http://httpupdate.cpanel.net/.

Case 68965

Summary

Reseller ACL checks were missing from multiple WHM interfaces.

Security Rating

cPanel has assigned a Security Level of Important to this vulnerability.

Description

When creating a reseller account in WHM, the system administrator may limit the WHM functionality that is available to the reseller using the WHM ACL system. Multiple interfaces in WHM were found to lack explicit enforcement of the appropriate reseller ACLs for the functionality they provided. This allowed resellers without appropriate ACLs to enter translated phrases, access disk usage information, view email delivery data, and check for the existence of MySQL users.
The missing ACL checks in the translation system were discovered by Rack911.
The remaining missing ACL checks were discovered by the cPanel Security Team.

Solution

This issue is resolved in the following builds:

11.38.0.15 and greater
11.36.1.8 and greater
11.34.1.18 and greater
11.32.6.7 and greater

Please update your cPanel & WHM system to one of the aforementioned versions or the latest public release available. A full listing of published versions can always be found at http://httpupdate.cpanel.net/.

For the PGP Signed Version, please go here.

Posted in Security | Tagged: , ,

11.38 to RELEASE Tier

6/10/2013
Houston, TX-

cPanel, Inc. announces the release of cPanel & WHM software version 11.38.

cPanel & WHM software release 11.38, which goes to the RELEASE tier today, offers significant improvements to SSL Management and Backups. It also provides enhancements to jail shell, email auto configuration, and more.

Improved SSL Management

The improved SSL management system offers a number of enhancements; support for UCC certificates, SNI (Server Name Indication), and enhanced support for Wildcard SSL certificates. This allows cPanel users to host multiple SSL websites on the same account. cPanel & WHM users will notice changes to the user interfaces that simplify installing, managing the various SSL certificates, keys, and signing requests associated with their domains.

System and Account Backups

cPanel introduces a new backup system with software release 11.38. Among the changes are the ability to store backups in multiple locations, reduction in the time needed to perform a full backup, and a complete set of functionality for automating backups.

Backup restoration is also enhanced. A new queuing system allows system administrators to perform other operations within cPanel & WHM while restorations occur.

Other notable changes include:

* Ability to configure the host used by email autodiscovery, and auto configuration
* Improved email tracking ability by ensuring the From header matches the mail sender
* Use of a single template system for customizing the Apache configuration
* Changes to jail shell, mod_ruid2, and more

Detailed information on all 11.38 features can be found at http://docs.cpanel.net/twiki/bin/view/AllDocumentation/1138ReleaseNotes.For an overview of the latest features available in 11.38, visit http://releases.cpanel.net/category/releases/11-38/.

Posted in News | Tagged: , ,

Important: 2013-06-05 Targeted Security Releases

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated these updates as having important security impact. Information on security ratings is available at http://go.cpanel.net/securitylevels.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then we strongly encourage you to update your cPanel & WHM installs at your earliest convenience.

Releases

The following cPanel & WHM versions address all known vulnerabilities:

* 11.38.0.15
* 11.36.1.8
* 11.34.1.18
* 11.32.6.7

The latest public releases of cPanel & WHM for all update tiers are available at http://httpupdate.cpanel.net.

Security Issue Information

The resolved security issues were identified by the cPanel security team and independent security researchers. There is no reason to believe that these vulnerabilities are known to the public. As such, cPanel will only release limited information about the vulnerabilities at this time.

Once sufficient time has passed to allow cPanel & WHM systems to automatically update their installed software to the new versions, cPanel will release additional information about the nature of the security issues. This Targeted Security Release addresses 10 vulnerabilities in cPanel & WHM 11.38, 11.36, 11.34 and 11.32. Additional information is scheduled to be released June 10, 2013.

For information about our Versions and Release Process, read the following document: http://docs.cpanel.net/twiki/bin/view/AllDocumentation/InstallationGuide/CpanelProductVersions

For the PGP Signed message, please go here.

Posted in Security | Tagged: , ,

IMPORTANT: cPanel Security Notice 2013-06-03

SUMMARY

The Apache mod_rewrite module fails to sanitize input, which may lead to arbitrary command execution in some circumstances.

SECURITY RATING

The cPanel Security Team has rated this update has having critical security impact.

Information on security ratings is available at: http://go.cpanel.net/securitylevels. You are strongly encouraged to run EasyApache and update your Apache installation at your earliest convenience.

DETAIL

From CVE-2013-1862: “It was found that mod_rewrite did not filter terminal escape sequences from its log file. If mod_rewrite was configured with the RewriteLog directive, a remote attacker could use specially-crafted HTTP requests to inject terminal escape sequences into the mod_rewrite log file. If a victim viewed the log file with a terminal emulator, it could result in arbitrary command execution with the privileges of that user.”

AFFECTED VERSIONS

All versions of Apache 2.2 and 2.4.

SOLUTION

cPanel, Inc has released EasyApache 3.18.16 to correct this issue. To update, rebuild your EasyApache profile. For more information on rebuilding profiles, please consult our documentation (http://go.cpanel.net/ea)

RELEASES

EasyApache v3.18.16 addresses all known vulnerabilities.

Unless EasyApache updates are disabled on your system, the latest version of EasyApache will be used whenever EasyApache is run. Note that EasyApache updates must be done manually.

REFERENCES

* CVE-2013-1862 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1862)
* CVSSv2: (AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C/CDP:MH/TD:H/CR:ND/IR:ND/AR:ND)
* RHSA-2013:0815 (http://rhn.redhat.com/errata/RHSA-2013-0815.html)
* Apache Patch: http://people.apache.org/~jorton/mod_rewrite-CVE-2013-1862.patch

For the PGP Signed message, please go here

Posted in Security | Tagged: ,

Update for cPanel & WHM Versions 11.38, 11.36, 11.34, & 11.32

cPanel, Inc. has published a security update for cPanel & WHM versions 11.38, 11.36, 11.34, and 11.32. This update resolves an issue with unchecked reseller privileges. We recommend all customers update to the latest build of each version as soon as possible.

The cPanel Security Team has assigned a rating of Moderate to the vulnerability. Information on security ratings is available at http://docs.cpanel.net/twiki/bin/view/AllDocumentation/SecurityLevels.

Using a handcrafted URL, a malicious reseller could cause WHM to overwrite files in root’s .ssh directory with a randomly generated private key. This could result in a denial of service attack if the key is being used.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then you are highly encouraged to update your cPanel & WHM installs at your earliest convenience.

Releases

The following versions of cPanel & WHM address all known vulnerabilities:

* 11.38.0.5
* 11.36.1.6
* 11.34.1.14
* 11.32.6.5

The latest public releases of cPanel & WHM for all update tiers are published at http://httpupdate.cpanel.net.

Acknowledgements

cPanel, Inc. would like to thank the source who reported the vulnerability.

For the PGP Signed Message, please go here.

Posted in Security | Tagged:

11.38 Now in CURRENT Tier

5/7/2013
Houston, TX-

cPanel, Inc. announces the release of cPanel & WHM software version 11.38.

cPanel & WHM software release 11.38, which releases to the CURRENT tier today, offers significant improvements to SSL Management and Backups. It also provides enhancements to jail shell, email auto configuration, and more.

Improved SSL Management

The improved SSL management system offers a number of enhancements; support for UCC certificates, SNI (Server Name Indication), and enhanced support for Wildcard SSL certificates. This allows cPanel users to host multiple SSL websites on the same account. cPanel & WHM users will notice changes to the user interfaces that simplify installing, managing the various SSL certificates, keys, and signing requests associated with their domains.

System and Account Backups

cPanel introduces a new backup system with software release 11.38. Among the changes are the ability to store backups in multiple locations, reduction in the time needed to perform a full backup, and a complete set of functionality for automating backups.

Backup restoration is also enhanced. A new queuing system allows system administrators to perform other operations within cPanel & WHM while restorations occur.

Other notable changes include:

* Ability to configure the host used by email autodiscovery, and auto configuration
* Improved email tracking ability by ensuring the From header matches the mail sender
* Use of a single template system for customizing the Apache configuration
* Changes to jail shell, mod_ruid2, and more

Detailed information on all 11.38 features can be found at http://docs.cpanel.net.  For an overview of the latest features available in 11.38, visit http://releases.cpanel.net.

Posted in News, Release Announcements | Tagged: , ,

11.34 EOL, 6 Month Notice

cPanel & WHM 11.34 reaches End Of Life October 15, 2013. That means there are only 6 months left in the life cycle.

In accordance with our End of Life Policy [http://docs.cpanel.net/twiki/bin/view/AllDocumentation/InstallationGuide/LongTermSupport], cPanel & WHM software release 11.34 will continue functioning on servers after reaching end of life. No further updates, including security fixes, or installations will be provided for 11.34 after the end of life date.

All customers currently using cPanel & WHM software release 11.34 are advised to begin planning the upgrade to cPanel & WHM software release 11.36 (EOL Date: March 2014). If you desire assistance with your migration plans, please contact our technical support team at https://tickets.cpanel.net/submit/. Our professional staff will help with recommendations, migration assistance and more.

A PGP Signed Version is also available

Posted in News | Tagged: ,

11.36 Pushed to STABLE

April 8, 2013
Houston, TX-

cPanel Inc., announces the release of cPanel & WHM software version 11.36 to the STABLE tier.

Included in this brand new software release are further improvements to the update system, building on work started with cPanel & WHM 11.30. A new staging step during installation allows a variety of checks to occur prior to changing the cPanel & WHM installation. This makes both new installations, and upgrades, more reliable.

cPanel & WHM software version 11.36 also brings an entirely new system for managing applications, based upon the tried-and-true RPM packaging format. By distributing applications via RPM, we are able to reduce cPanel & WHM installation time by 30%, on average. The new system also provides integrators and system deployers a simplified means of distributing applications with cPanel & WHM software.

We are happy to announce that cPanel & WHM 11.36 brings a modern version of Perl with it. Perl 5.14 is available with all versions of 11.36 and newer. This change brings an end to the older Perl 5.8.8 distributed with prior versions of cPanel & WHM software.

Included in cPanel & WHM 11.36 is support for Apache 2.4, provided via EasyApache. Apache 2.4 brings many new features and performance benefits to your hosting platform.

Other features also available in version 11.36:

-The email auto discovery support for Thunderbird and Outlook has been updated and re-introducted with improved compatibility with existing setups.

-The ability to track mail sent by web applications is improved through new functions that integrate with Apache and PHP.

cPanel thanks the members of our EDGE-Users community for their feedback and testing of the development releases. If you would like to join this community please GO HERE: http://go.cpanel.net/cpmailinglist.

Please note, after upgrading to the new release, a downgrade to an older version will not be permitted.

About cPanel, Inc.


Since 1997, cPanel, Inc. has become the world’s leading provider of dependable hosting and server automation solutions. cPanel builds software that transforms standalone servers into fully automated point-and-click web hosting platforms. cPanel & WHM licensed software allows owners of servers and websites, along with resellers and developers, to optimize their technical resources and replace tedious tasks with dynamic, intuitive web-based interfaces. www.cpanel.net
.

Posted in News, Press Releases, Release Announcements | Tagged: ,

cPanel & WHM Security Releases for 11.32, 11.34, and 11.36

cPanel has published security updates for all supported versions of cPanel & WHM. These updates contain fixes for a problem with the Roundcube webmail application. We recommend all customers update to the latest build of each version as soon as possible.

The cPanel Security Team has assigned a rating of Important to the vulnerability. Information on security ratings is available at http://go.cpanel.net/securitylevels. A locally authenticated user could take advantage of the flaw to gain access to sensitive information belonging to other accounts on the system. This problem was reported to us in case 64407.

If your deployed cPanel & WHM servers are configured to automatically update when new releases are available, then no action is required. Your systems will update automatically. If you have disabled automatic updates, then you are highly encouraged to update your cPanel & WHM installs at your earliest convenience.

Releases

The following versions of cPanel & WHM address all known vulnerabilities:

* 11.36.0.20
* 11.34.1.13
* 11.32.6.4

The latest public releases of cPanel & WHM for all update tiers are published at http://httpupdate.cpanel.net.

Click Here to view the PGP Signed Message.

Posted in key, News, Security | Tagged: , , , ,

cPanel to Attend GoDaddy TechFest

cPanel is heading to GoDaddy TechFest on May 9th. A valued partner of cPanel, GoDaddy is an industry leader that we’re thrilled to work with.

GoDaddy TechFest incorporates activities, guest speakers, and a chance to ask the over 750 GoDaddy employees numerous in-depth questions. This will be cPanel’s 2nd year to attend, and members of our technical staff will be headed to the event to take advantage of the hands on opportunity TechFest provides.

Posted in Events
Page 10 of 31« First...89101112...2030...Last »