Tag Archives: Known Issues

Technical Advisory: Plesk Panel 10 Migrations

If you are planning a migration from Parallels Plesk Panel to cPanel & WHM in the near future, do not upgrade Plesk Panel to version 10. Parallels Plesk Panel 10 incorporates a new authentication model that does not rely upon the /etc/passwd system database. This change prevents successful migrations from …

Posted in News | Tagged:

Exim Remote Memory Corruption Vulnerability Notification (CVE-2010-4344)

Summary A memory corruption vulnerability exists in Exim versions 4.69 and older (CVE-2010-4344). Exim is the mail transfer agent used by cPanel & WHM. Security Rating This update has been rated as Important by the cPanel Security team. Description A memory corruption vulnerability has been discovered in Exim.  This vulnerability …

Posted in Release Announcements, Security | Tagged: , ,

Critical: Exim security update (CVE-2010-4345)

Summary A privilege escalation vulnerability exists in Exim, the mail transfer agent used by cPanel & WHM. Security Rating This update has been rated as Critical by the cPanel Security team. Description Research up to this point indicates the exploit is a buffer overflow vulnerability that takes advantage of the …

Posted in Release Announcements, Security | Tagged: , ,

cPanel published ProFTPD releases not affected by security breach

On December 1, 2011 the ProFTPD Project team announced that the Project’s main FTP server, as well as mirror servers, were compromised. The ProFTPD 1.3.3c source code was modified to include a backdoor. The cPanel & WHM Development team obtained the ProFTPD 1.3.3c sources prior to the compromise. Additionally, the …

Posted in News, Security | Tagged: ,

11.25.1 Technical Advisory: Backwards-Incompatible Change

With version 11.25.1, cPanel introduces the Database Mapping feature. This feature lays the groundwork for providing more flexibility in naming databases and database users. In the past, cPanel has always appended an account’s username to any database name or database username created by the account (for example, a database might …

Posted in News | Tagged:

cPanel 11.25.0 Installation Apache configuration syntax errors

The release of 11.25.0-RELEASE_42399 and 11.25.0-CURRENT_42399 introduced a configuration issue that may cause Apache configuration syntax errors on servers with no accounts when the mod_userdir tweak is enabled. The condition will present itself upon addition of the first account to the server. This issue is quickly addressed by rebuilding the …

Posted in News | Tagged:

Spam Assassin Ruleset Bug

The Quality Assurance team discovered a bug within the SpamAssassin ruleset that will mark messages sent in the year 2010 (that’s today) and beyond with a higher spam score than expected.     This bug can result in legitimate mail being flagged as spam. The cPanel Development team has issued a hot …

Posted in Release Announcements | Tagged: ,

cPanel 11.25 Tech Bulletin: updated bandwidth tracking requirements

In cPanel 11.25 we have made a few feature improvements to the bandwidth tracking system built into WHM and cPanel. While these new features grants you a much more accurate and granular view of client bandwidth usage, customers with inadequately sized /var partitions may run into issues related to partition …

Posted in Release Announcements | Tagged: ,

Error: "PEAR: command not found"

<!– Error: “PEAR: command not found” –> The error If you build PHP with PEAR, and the script pear does not exist on your server, this is what happened: At some point, /usr/local/bin/pear and/or /usr/bin/pear were manually removed. The directories /usr/local/lib/php/.registry and/or /usr/lib/php/.registry exist. During PHP’s make install, the existence …

Posted in News | Tagged:

Bug: OpenSSL in Apache 2.0 and 2.2 
(on CentOS 4.0-4.5 only)

Problem Certain older versions of OpenSSL contain a bug that causes Apache to fail while starting on systems that have a large number of VirtualHosts, at least one of which is used for SSL access. Red Hat® and CentOS 4.6+ and 5.x have been patched for this issue. If your …

Posted in News | Tagged: