We have a new documentation site for cPanel & WHM! You can find our new documentation site at docs.cpanel.net.

We will continue to maintain our API documentation on this server.

Page tree
Skip to end of metadata
Go to start of metadata

11.38.2.23


2014-03-24
  • [security] Fixed case 85329: Sensitive information disclosed via multiple log files.
  • [security] Fixed case 86337: Injection of arbitrary DNS zonefile contents via cPanel DNS zone editors.
  • [security] Fixed case 87205: Open redirect vulnerability in FormMail -clone.
  • [security] Fixed case 88577: Arbitrary file overwrite via trackupload parameter.
  • [security] Fixed case 88793: External XML entity injection in WHM locale upload interface.
  • [security] Fixed case 89009: Arbitrary code execution for ACL limited resellers via WHM Activate Remote Nameservers interface.
  • [security] Fixed case 89057: Fix self-XSS vulnerability on reseller branding download page.
  • [security] Fixed case 89133: Fix self-stored XSS vulnerability in WHM Backup Configuration.
  • [security] Fixed case 89137: Fix self-XSS vulnerability in WHM Local XML Upload.
  • [security] Fixed case 89377: Arbitrary code execution for ACL limited resellers via WHM objcache.
  • [security] Fixed case 89729: Insufficient ACL checks in WHM Modify Account interface.
  • [security] Fixed case 89733: Injection of arbitrary data into cpuser configuration files via wwwacct.
  • [security] Fixed case 89789: Arbitrary code execution for ACL limited resellers via batch API.
  • [security] Fixed case 90001: Sensitive information disclosed via update-analysis tarballs.
  • [security] Fixed case 90213: Self XSS vulnerability in WHM MySQL Root Password interface.
  • [security] Fixed case 90225: Multiple self XSS vulnerabilities in CloudLinux LVE Manager.
  • [security] Fixed case 90249: Self XSS vulnerability in WHM Xferlog Tail.
  • [security] Fixed case 90257: Self XSS vulnerability in WHM Edit System Mail Preferences.
  • [security] Fixed case 90261: Stored XSS Vulnerability in WHM SSH Check.
  • [security] Fixed case 90265: Open mail relay via injection of FormMail -clone parameters.
  • [security] Fixed case 90289: Self XSS vulnerability in WHM Zone Editor.
  • [security] Fixed case 90773: Self-stored XSS vulnerability in cPanel Hotlink Protection.
  • [security] Fixed case 90777: Self-stored XSS vulnerability in Web Disk Accounts.
  • [security] Fixed case 90817: Self XSS vulnerability in listfmfiles.json.
  • [security] Fixed case 90837: Self-stored XSS vulnerability in Redirects.
  • [security] Fixed case 91253: Stored XSS vulnerability in cPAddons Moderation Requests.
  • [security] Fixed case 91457: Self XSS vulnerability in cPanel PHP Test.
  • [security] Fixed case 91461: Self XSS vulnerability in Entropy Banner Upload.
  • [security] Fixed case 91633: Self XSS vulnerability in Fetch Mail Archive.
  • [security] Fixed case 91677: Self-stored XSS vulnerability in cPanel Image Manager Scaler.
  • [security] Fixed case 91681: Self-stored XSS vulnerability in cPanel Image Manager Thumbnailer.
  • [security] Fixed case 91717: Self-XSS vulnerabilities in BoxTrapper _getaccountinfo/BoxTrapper_getemaildirs.
  • [security] Fixed case 91741: Arbitrary code execution via backup excludes.
  • [security] Fixed case 91973: Self XSS vulnerability in cPanel Image Manager Scaler.
  • [security] Fixed case 91977: Self XSS vulnerability in cPanel Image Manager Format Converter.
  • [security] Fixed case 91981: XSS Vulnerabilities in cPanel Image Manager Thumbnailer.
  • [security] Fixed case 92133: Self XSS vulnerability in Delete Private SSH Key.
  • [security] Fixed case 92157: Stored XSS vulnerability in FrontPage Install/Uninstall.
  • [security] Fixed case 92421: Self XSS vulnerability in Mail Settings Container AJAX.
  • [security] Fixed case 92489: SSH private key disclosure during key import process.
  • [security] Fixed case 92593: Reflected XSS vulnerability in Entropy Search.
  • [security] Fixed case 93089: Self XSS Vulnerability in Redirect Removal Confirm.
  • [security] Fixed case 93125: Self XSS Vulnerability in Default Website Page.
  • [security] Fixed case 94201: Insufficient validation allows password reset of arbitrary users.

11.38.2.17


2014-02-04
  • Fixed case 81125: Allow redirect to installed SSL hosts for wildcard certs.
  • Fixed case 83681: Allow MySQL upgrades even if mysql is disabled.
  • Fixed case 89825: Fix parking a domain through WHM.
  • Implemented case 84481: Update ioncube loader to 4.5.0.

11.38.2.16


2014-02-03
  • [security] Fixed case 84385: Arbitrary code execution as cpanel-horde user via cache file poisioning.
  • [security] Fixed case 84633: Fix multiple self XSS vulnerabilities in Cpanel::Htaccess.
  • [security] Fixed case 84877: Fix self XSS vulnerability in Initial Setup Wizard.
  • [security] Fixed case 84881: Fix stored XSS vulnerability in Set Default Address.
  • [security] Fixed case 84885: Fix XSS in /x3/mail/filters/editfilter.html.
  • [security] Fixed case 84893: Fix XSS vulnerabilities in BoxTrapper Configuration.
  • [security] Fixed case 84897: Fix self XSS vulnerabilities in HTTP Bandwidth View.
  • [security] Fixed case 84901: Fix stored XSS vulnerability in Image Thumbnailer.
  • [security] Fixed case 85029: Fix self XSS vulnerability in Import Addresses/Forwarders.
  • [security] Fixed case 85133: Fix stored XSS vulnerability in File Editor.
  • [security] Fixed case 85177: Fix multiple self XSS vulnerabilities in CGI Center.
  • [security] Fixed case 85229: Fix multiple self XSS vulnerabilities in PostgreSQL database deletion.
  • [security] Fixed case 85249: Fix XSS vulnerability in Add Postgres User to DB.
  • [security] Fixed case 85273: Fix self-XSS vulnerability in Hotlink Protection.
  • [security] Fixed case 85457: Fix self XSS vulnerability in BoxTrapper Verification.
  • [security] Fixed case 85461: Fix multiple self XSS vulnerabilities in Cpanel::Boxtrapper.
  • [security] Fixed case 85589: Fix XSS vulnerability in Tweak Settings.
  • [security] Fixed case 85981: Fix XSS vulnerability in WHM Add A Package interface.
  • [security] Fixed case 86017: Fix XSS vulnerability in Security Questions interfaces.
  • [security] Fixed case 86329: Fix stored XSS vulnerability in Edit MX Entry.
  • [security] Fixed case 86381: Disclosure of root's accesshash to ACL limited resellers via WHM xml-api.
  • [security] Fixed case 86453: Injection of arbitrary settings into cpuser files via account creation.
  • [security] Fixed case 86461: Overwriting of trusted inputs to third party hooks scripts.
  • [security] Fixed case 86857: Limited arbitrary file overwrite for ACL limited resellers via domain parking.
  • [security] Fixed case 87081: Fix self-XSS vulnerability in Redirects.
  • [security] Fixed case 87317: Arbitrary code execution as root for ACL limited resellers via cluster configuration interfaces.
  • [security] Fixed case 87421: Fix XSS vulnerability in code editor.
  • [security] Fixed case 87433: Injection of arbitrary settings into cpuser files via mxcheck setting.
  • [security] Fixed case 87437: ACL limited resellers allowed to disable digest authentication for arbitrary accounts.
  • [security] Fixed case 87457: Fix self-XSS vulnerability in cPAddons Feature Manager.
  • [security] Fixed case 87625: ACL limited resellers allowed to restore backups for the accounts they control.
  • [security] Fixed case 88061: Mis-assignment of IP addresses for ACL limited resellers via createacct.
  • [security] Fixed case 88093: Fix XSS vulnerability in Full Backup.
  • [security] Fixed case 88097: Fix XSS vulnerability in Restore Files.
  • [security] Fixed case 88129: Fix XSS vulnerability in Restore a MySQL Backup.
  • [security] Fixed case 88133: Fix XSS vulnerability in Restore Email Filters.
  • [security] Fixed case 88137: Fix XSS vulnerability in Full Backup.
  • [security] Fixed case 88141: Fix XSS vulnerability in IP Deny Manager.
  • [security] Fixed case 88145: Fix XSS vulnerability in IP Deny Manager.
  • [security] Fixed case 88149: Fix XSS vulnerability in IP Deny Manager index page.
  • [security] Fixed case 88153: Fix XSS vulnerability in Image Tools.
  • [security] Fixed case 88157: Fix XSS vulnerability in various pages that save files.
  • [security] Fixed case 88165: Fix XSS vulnerability in Legacy File Manager file extraction.
  • [security] Fixed case 88173: Fix XSS vulnerability in Legacy File Manager viewer.
  • [security] Fixed case 88181: Fix XSS vulnerability in FrontPage status listing.
  • [security] Fixed case 88209: Fix multiple XSS vulnerabilities in Cpanel::LeechProtect.
  • [security] Fixed case 88213: Fix XSS vulnerability in Network Tools.
  • [security] Fixed case 88229: Fix XSS vulnerability in Parked Domains.
  • [security] Fixed case 88253: Fix XSS vulnerability in PostgreSQL user removal.
  • [security] Fixed case 88257: Fix XSS vulnerability in Analog log viewer.
  • [security] Fixed case 88261: Fix XSS vulnerability in subdomain redirects.
  • [security] Fixed case 88265: Fix XSS vulnerability in adding a subdomain.
  • [security] Fixed case 88269: Fix stored XSS vulnerability in cPAddons.
  • [security] Fixed case 88277: Fix XSS vulnerability in MySQL APIs.
  • [security] Fixed case 88281: Fix multiple XSS vulnerabilities in BoxTrapper queue search.
  • [security] Fixed case 88285: Fix XSS vulnerability in BoxTrapper::changestatus.
  • [security] Fixed case 88289: Fix XSS vulnerability in BoxTrapper::editmsg.
  • [security] Fixed case 88293: Fix XSS vulnerability in BoxTrapper::listmsgs.
  • [security] Fixed case 88297: Fix XSS vulnerability in BoxTrapper::messageaction.
  • [security] Fixed case 88301: Fix XSS vulnerability in BoxTrapper::resetmsg.
  • [security] Fixed case 88305: Fix stored XSS vulnerability in BoxTrapper::showemails.
  • [security] Fixed case 88309: Fix XSS vulnerability in BoxTrapper::showlog.
  • [security] Fixed case 88313: Fix XSS vulnerability in BoxTrapper::showmsg.
  • [security] Fixed case 88321: Fix XSS vulnerability in BoxTrapper::getboxconfdir.
  • [security] Fixed case 88325: Fix multiple XSS vulnerability in BoxTrapper.
  • [security] Fixed case 88341: Arbitrary code execution for ACL limited resellers during account creation.

11.38.2.15


2013-12-20
  • [security] Fixed case 84681: Arbitrary file read for ACL limited reseller accounts via XML-API.

11.38.2.13


2013-12-16
  • [security] Fixed case 63541: Arbitrary code execution via user supplied translatable phrases.
  • [security] Fixed case 69517: World-writable Counter directory allowed arbitrary code execution.
  • [security] Fixed case 71125: Arbitrary file ownership change via cPanel branding system.
  • [security] Fixed case 73125: After multiple security token failures, session credentials were not invalidated.
  • [security] Fixed case 73193: Unsafe disclosure of security token during session based login.
  • [security] Fixed case 74333: The session credentials were disclosed during reseller override logins.
  • [security] Fixed case 78045: Stored XSS vulnerability in WHM Daily Process Log screen.
  • [security] Fixed case 78089: Password disclosure during forced cPAddons upgrade.
  • [security] Fixed case 79277: Arbitrary file read vulnerability in WHM Edit DNS Zone interface.
  • [security] Fixed case 80633: Arbitrary file write via X3 countedit.cgi.
  • [security] Fixed case 81373: Bandmin passwd file stored with world-readable permissions.
  • [security] Fixed case 81377: Multiple XSS vulnerabilities found in Bandmin.
  • [security] Fixed case 81429: URL filtering flaws allowed access to restricted resources.
  • [security] Fixed case 81641: Path traversal flaw allows arbitrary code execution for restricted cPanel accounts.
  • [security] Fixed case 81885: Multiple self-XSS vulnerabilities found in cPanel.
  • [security] Fixed case 82309: Insecure storage of Logaholic session files was found.
  • [security] Fixed case 80113: cPHulk injection via crafted SSH connections.
  • [security] Fixed case 82725: XSS vulnerability found in YUI 2.
  • [security] Fixed case 82733: Database grant files stored with world-readable permissions.
  • [security] Fixed case 83929: A cross-account XSRF attack against reseller override logins was possible via goto_uri.
  • Fixed case 83501: Disallow \g in MySQL GRANT statements during account restores.

11.38.2.12


2013-10-25
  • [security] Fixed case 76541: Do not remove file name provided by user while cleaning up.
  • Fixed case 81125: Prevent hang on installation of service SSL.

11.38.2.11


2013-10-23
  • [security] Fixed case 69513: Create Logaholic directories with 700 permissions.
  • [security] Fixed case 74525: Prevent leaking of security token in Manage SSL Hosts interface.
  • [security] Fixed case 76085: Prevent virtual email accounts owned by a reseller from manipulating translations.
  • [security] Fixed case 76541: Remove only the temporary file when deleting unused file uploads.
  • [security] Fixed case 76549: Sanitize multipart POST data to prevent fake file uploads.
  • [security] Fixed case 76789: Create transfer logs with 0600 permissions.
  • [security] Fixed case 76869: Update Dovecot handling of checkpassword authentication for CVE-2013-6171.
  • [security] Fixed case 76941: Fix Cpanel::LogMeIn session expiration.
  • [security] Fixed case 78177: Patch mailman CGIs to run setuid mailman.
  • [security] Fixed case 78253: Fix WHM mod_userdir tweak compatibility with mod_ruid2.
  • [security] Fixed case 79133: Sanitize whitespace in SSL certificates before installation.
  • Implemented case 80245: Add cpanel-common-licenses RPM.
  • Implemented case 75937: Fix Apache 2.4.5+ proxy subdomains with SSL.
  • Implemented case 80745: Fixed Contact Customer Support link piping issue.

11.38.2.7


2013-09-10
  • Fixed case 75097: Don't install modules to cPanel perl using perlinstaller.
  • [security] Fixed case 76029: Update RoundCube to 0.9.3.
  • Fixed case 76205: Remove buttons to add and edit users through phpMyAdmin.
  • Fixed case 77013: Apply phpMyAdmin patch for large table export problem.
  • Fixed case 77285: phpMyAdmin: Fix import from sql query form.

11.38.2.6


2013-08-28
  • [security] Fixed case 68205: Update cPAddon configuration as the user.
  • [security] Fixed case 71265: Prevent shell execution in autorespond.
  • [security] Fixed case 71701: Fix arbitrary module load in cpaddons.pl.
  • [security] Fixed case 71705: Don't write corrupt data to cPAddons configuration.
  • [security] Fixed case 71709: Prevent HTML injection in cPAddons.
  • [security] Fixed case 71721: Fix several security issues with cPAddons.
  • [security] Fixed case 71725: Sanitize input when loading modules.
  • [security] Fixed case 71733: Prevent users from installing cPAddons as other users.
  • [security] Fixed case 73565: Save cpmove files with proper permissions.
  • [security] Fixed case 73585: Prevent corruption of httpd.conf through DocumentRoot.
  • [security] Fixed case 73609: Improve safety of account rearrange.
  • [security] Fixed case 73777: Encode user passwords in session files.
  • [security] Fixed case 74609: Prevent path traversal when reading nvdata.
  • Fixed case 74625: Fix locale XML reseller privilege escalation.
  • [security] Fixed case 75113: Only allow root to use the "stor" nvset paramater.
  • [security] Fixed case 75169: Sanitize module names before loading in cPAddons.
  • [security] Fixed case 75413: Don't let non-root users run cpaddons.pl.
  • [security] Fixed case 75417: Prevent an XSS attack in cpaddons_report.pl.
  • [security] Fixed case 75573: Prevent file manipulation when unsuspending account.
  • [security] Fixed case 75605: Prevent jailshell escape with two-arg open.
  • Fixed case 76137: Preserve random cookie when invalid security token used.
  • [security] Fixed case 76157: Prevent infinite loop in password encoding/decoding.
  • [security] Fixed case 76161: Don't use additional cookie for session file password encoding.

11.38.2.3


2013-08-23
  • Fixed case 72709: Update Roundcube to 0.9.2.
  • Fixed case 75017: Update phpMyAdmin from version #4.0.4.2 to version #4.0.5.
  • Fixed case 75085: Note that exporting large databases is broken in phpMyAdmin.

11.38.2.2


2013-08-15
  • Fixed case 64259: Allow creation of proxy subdomains without autodiscover.
  • Fixed case 70149: Fix account transfers with an empty tarroot.
  • Fixed case 74673: Allow an ssl host for the hostname to be installed on any ip on the server.
  • Fixed case 75065: Fix quota checking delay related to NFS.
  • Fixed case 75329: Restore the ability to disable security tokens.
  • Fixed case 75385: Properly restore mail by default on package restoration.

11.38.2.1


2013-08-12
  • Fixed case 71685: JSON::XS and SSL certificate encoding decoding failures.
  • Fixed case 73481: Fix misencoded Russian output.
  • [security] Fixed case 74209: Update phpMyAdmin 4 to 4.0.4.2.
  • Fixed case 74589: Display domain name when generating a certificate.
  • Fixed case 74597: Fix failure to install Perl module in cPanel.
  • Fixed case 74793: Fix additional phpMyAdmin 4 integration issues.
  • Fixed case 74961: Update Archive::Tar::Builder to 1.2.
  • Fixed case 74781: Packages: Fix trailing slash added to long file names.
  • Fixed case 74517: Packages: Correct handling of member names in LongLink blocks.

11.38.2.0


2013-08-06
  • Fixed case 61499: Wait to start RoR until after cpsrvd is started.
  • Fixed case 61909: Keep only one entry for each version in cp_schema_version table.
  • Fixed case 62489: Make PHP homeloader work with newer PHPs.
  • Fixed case 64209: Do not remove A record when deleting main MX entry using cPanel.
  • Fixed case 69149: Improve feature showcase error handling.
  • Fixed case 69689: Do not restore emails from subdomains when subdomains are not restored.
  • Fixed case 70201: Normalize IP display in WHM.
  • Fixed case 70401: Improve UI when checking backup destinations in WHM.
  • Fixed case 70513: Allow backups to WebDAV servers with non-DAV root.
  • Fixed case 70681: Make SSL's domain matching case-insensitive for ASCII domains.
  • Fixed case 70865: Allow calling safemkdir with an octal number.
  • Fixed case 70917: Fix remaining uses of old-style safemkdir calls.
  • Fixed case 70969: Fix 'restore mail config' option when restoring an account from a legacy backup.
  • Fixed case 70993: Properly unmount deleted mount paths for jailshell.
  • Fixed case 71157: Prevent duplicate virtfs mounts when /home is symlinked.
  • Fixed case 71205: Specify Options None when no options are enabled.
  • Fixed case 71213: Fix running exim under jailexec on CentOS 6.
  • Fixed case 71261: Fix typos in Cpanel/SSL/Domain.pm.
  • Fixed case 71321: Add branch name in email smoker title.
  • Fixed case 71405: Fix Roundcube upgrade when using SQLite.
  • Fixed case 71833: Prevent lock contention when updating Tweak Settings.
  • Fixed case 71881: Increased timeout for auto generated resellers.
  • Fixed case 71901: Do not apply rlimits on pigz, and improve error reporting.
  • Fixed case 72109: Update virtfs for jailed user when jailapache is turned on.
  • Fixed case 72201: Improve description of backup directory.
  • Fixed case 72257: Improve file cleanup when both daily and monthly need to run.
  • Fixed case 72681: Fix SSL Parser handling the text "key".
  • Fixed case 72693: Prevent zombies from accumulating during backups.
  • Fixed case 72705: Detect Tomcat 7 when modifying an account.
  • Fixed case 72797: Fix quota reporting problem in cPanel.
  • Fixed case 73185: Respect setting of /etc/rrdtooldisable.
  • Fixed case 73209: Fix nested group usage in bracket notation.
  • Fixed case 73269: Report DNS zone save errors during account creation.
  • Fixed case 73325: Provide better errors and prevent faulty AppConfig registrations.
  • Fixed case 73337: Only present a link if it is accessible through ACL check.
  • [security] Fixed case 73349: Update Ruby to 1.8.7-p374 to address CVE-2013-4073.
  • Fixed case 73365: Making ensure_includes not edit httpd.conf.
  • Fixed case 73385: Prevent a single invalid ssl cert from breaking ssl_migration.
  • Fixed case 73389: Change table option for MySQL engine specification to "ENGINE" instead of "TYPE".
  • Fixed case 73457: Update Archive::Tar::Builder to the latest version.
  • Fixed case 73521: Add missing Cpanel::SSLInfo to scripts/ssl_crt_status.
  • Fixed case 73529: Avoid race condition in updateleechprotect.
  • Fixed case 73661: Update nsd to 3.2.16-1.cp1136.
  • Fixed case 73693: Fix another race condition in updateleechprotect.
  • Fixed case 73817: Add the correct database name to look for roundcube.
  • Fixed case 73857: Add line break to prevent concatenation of unrelated domain output messages.
  • Fixed case 73869: Fix ssl_crt_status detection of domains without certs.
  • Fixed case 73901: Fix pkgacct error handling problem.
  • Fixed case 73977: Security Token Missing prevents login with HTTP Authentication.
  • Fixed case 74049: Fix phpMyAdmin 4 database renames.
  • Fixed case 74093: Detect CLONE_NEWPID success or failure using getppid.
  • Fixed case 74109: Fix cPanel security token reuse in cpsrvd.
  • Fixed case 74177: Gracefully handle when MySQL server is down in setupdbmap.
  • Fixed case 74301: Deliver mail from cron normally under jailshell.
  • Implemented case 71285: Update phpMyAdmin to version 4.0.4.
  • Implemented case 73877: Run pre-build tests with failures visible.
  • Implemented case 73897: Remove migrate-attracta.

11.38.1.15


2013-07-23
  • Fixed case 73073: Prevent security token destruction on access to a login url.
  • [security] Fixed case 73349: Update Ruby to 1.8.7-p374 to address CVE-2013-4073.

11.38.1.14


2013-07-18
  • Fixed case 71669: Failed logins destroy the session before the security token can be saved.
  • Fixed case 71817: Fix information disclosure in cPanel's SSL::installed_hosts API call.
  • Fixed case 71889: Properly display XFS quotas.
  • Fixed case 72025: Allow customization of AppConfig alert priority.
  • Fixed case 72129: Start stunnel when necessary as part of cpsrvd startup.
  • Fixed case 72205: Make backup destination disabled email high priority.
  • Fixed case 72681: Fix SSL Parser handling the text "key".
  • Implemented case 71933: Allow LogMeIn.pm to provide a security token.

11.38.1.13


2013-07-15
  • [security] Fixed case 71121: Update squirrelmail login_auth plugin.
  • [security] Fixed case 71573: DNSAdmin request check for zone owner.
  • [security] Fixed case 71865: Verify that a reseller owns a domain being modified.
  • [security] Fixed case 71869: Drop privileges before updating order status.
  • [security] Fixed cases 71973,71573: Improve DNS Admin fix.
  • [security] Fixed case 72153: DNSAdmin clean the zones from the query string.
  • [security] Fixed case 72161: Do not update user's files as root when suspending an account.
  • [security] Fixed case 72237: Restore ability to root to update any zones on the system.
  • [security] Fixed case 72253: Do full zone owner lookup in dnsadmin.
  • [security] Fixed case 72357: Limit certain dnsadmin actions to root.
  • [security] Fixed case 72685: Keep system-owned domains in userdomains.
  • [security] Fixed case 72725: Restore some required reseller dnsadmin access.
  • [security] Fixed case 72821: Prohibit "system" as a username.

11.38.1.6


2013-06-28
  • Fixed case 71617: Improve roundcube sqlite fix for CentOS 5.x servers.
  • Implemented case 71137: Improve usability of security tokens.

11.38.1.5


2013-06-27
  • Fixed case 69685: Disable jailshell procfs mounting on buggy kernels.
  • Fixed case 70201: Normalize IP display in WHM.
  • Fixed case 70401: Improve UI when checking backup destinations in WHM.
  • Fixed case 70681: Make SSL's domain matching case-insensitive for ASCII domains.
  • Fixed case 70949: Fix JS parsing of certs that happen to trip up asn1js.
  • Fixed case 71049: Use correct Tweak Settings link for AppConfig settings.
  • Fixed case 71405: Fix Roundcube upgrade when using SQLite.
  • Implemented case 71229: Do not jail autoresponders.

11.38.1.4


2013-06-26
  • [security] Fixed case 71109: Write log archives as the user.
  • [security] Fixed case 71193: Drop privileges before manipulating user directories.

11.38.0.19


2013-06-26
  • [security] Fixed case 71109: Write log archives as the user.
  • [security] Fixed case 71193: Drop privileges before manipulating user directories.

11.38.1.3


2013-06-19
  • Fixed case 63502: Update dovecot to 1.2.17-3.cp1136.
  • Fixed case 66349: Do not use wildcard character in apache ServerName directive.
  • Fixed case 70197: Don't start stunnel unless required.
  • Fixed case 70485: Fix timeout and memory issue when dumping a MySQL database.
  • Fixed case 70581: Print an error when a suspended account cannot be backed up.
  • Fixed case 70757: Enable Tomcat support after account transfers.
  • Fixed case 70777: Corrected WHM backup front-end form validation for additional destinations.
  • Fixed case 70781: Do not freeze application list into cpsrvd binary.
  • Fixed case 70793: Improve WHM backup destination validation.

11.38.1.2


2013-06-18
  • Fixed case 60047: Preserve custom SPF records when creating addon domains.
  • Fixed case 60703: Don't falsely alert the admin about root logins.
  • Fixed case 63115: Preserve custom A records during transfer.
  • Fixed case 63275: Fix a issue with API2 expanding % in template parsing.
  • Fixed case 64526: Adjusted alignment of help text and supporting page elements.
  • Fixed case 65177: Unescape TXT record when adding an entry with a space.
  • Fixed case 65765: Pkgacct can use incremental backup from the improved backup system.
  • Fixed case 65913: Fix for hiding breadcrumbs in config php & suexec popup.
  • Fixed case 65977: Allow password change for mailing lists with bounces.
  • Fixed case 66681: Remove unreachable code in Cpanel::SafetyBits.
  • Fixed case 66849: Fix for adding users and databases with hyphens in PostgreSQL.
  • Fixed case 66861: Fix recursive chowning as root.
  • Fixed case 66889: Check webalizer binary and use main binary or english as default.
  • Fixed case 66913: Do not display mysql and postgres root user in frontend.
  • Fixed case 66997: Prevent known warnings in tests, do local data in tmp dir.
  • Fixed case 67009: Update_homedir_data fails to update the homedir in the ssl userdata.
  • Fixed case 67121: Properly update maximum number of cpsrvd connections.
  • Fixed case 67165: Implement '--allow-override' option for bin/backup.
  • Fixed case 67369: PwCache need to be purge when (un)suspending a reseller.
  • Fixed case 67385: Fix CSS for filter in backup user selection.
  • Fixed case 67405: Validate ip value in restorepkg.
  • Fixed case 67421: Fix to copy multiple accounts when one fails using firefox.
  • [security] Fixed case 67573: Use safe temp paths when installing ruby.
  • Fixed case 67609: Increase test coverage of Cpanel::Mysql.
  • Fixed case 67661: Always use certificate's domain when alwaysredirecttossl is set.
  • Fixed case 67669: Improve log messages when updating backup configuration.
  • Fixed case 67677: Periodic clear of orphened virtfs mounts.
  • Fixed case 67721: T/Cpanel-CachedDataStore.t failing.
  • Fixed case 67773: Error out when trying to transfer as a user with noshell.
  • Fixed case 67777: Properly warn on bad credentials on transfer.
  • Fixed case 67921: Avoid calling wrap binaries on loading phpMyAdmin.
  • Fixed case 68041: Prevent creating SSL vhosts on different IPs from the non-SSL vhost.
  • Fixed case 68181: DNS Cleanup Page is Blank in IE 10.
  • Fixed case 68233: Fix pop config files group after restoring a backup.
  • Fixed case 68409: Missing use strict test for exim.pl.local.
  • Fixed case 68413: Improve logaholic update lock system.
  • Fixed case 68641: Synchronize transfer scripts before copying them to a server.
  • Fixed case 68697: PHP Pecl Installer lists installed extensions when POSIX not installed.
  • Fixed case 68709: Catch transfer failures due to sudo being missing.
  • Fixed case 68713: Make clean_temp_users.pl work again.
  • Fixed case 68937: Allow BoxTrapper deliveries even if forwards are rejected.
  • Fixed case 68985: Make return failure and success the same on remote and local invocation.
  • Fixed case 69033: Fix IP Deny manager when newline is missing in .htaccess.
  • Fixed case 69101: Update cpanm to fix perlinstaller failure.
  • Fixed case 69109: Send correct HTTP headers with comet responses.
  • Fixed case 69161: Enable JSON::XS::shrink for Perl >= 5.8.
  • Fixed case 69185: MyDNS silently truncates DNS names to 64 characters.
  • Fixed case 69237: Update pure-ftpd to the latest version.
  • Fixed case 69241: Skip ipv6 addresses from ifconfig output.
  • Fixed case 69253: Increase default cPanel maxmem and minimum value to 512 MB.
  • Fixed case 69281: Fix localization of YUI Calendar in WHM Mail Delivery Reports.
  • Fixed case 69469: Remove duplicate errors message from an API call.
  • Fixed case 69605: Make Cpanel::CachedDataStore::store_ref race safe.
  • Fixed case 69737: Update MySQL 5.5 to version 5.5.32-1.cp1136.
  • Fixed case 69741: Added easy_apache_ui symlink to .gitignore.
  • Fixed case 69845: Fix roundcube database convertion to SQLite.
  • Fixed case 70061: Symlink, not hardlink, the python binary into place.
  • Fixed case 70141: Ensure that the bandmin .htaccess file is in place.
  • Fixed cases 70393,63178: Fix phpPgAdmin autologins with special characters.
  • Fixed case 70405: Unregister_appconfig incorrectly matches displayname.
  • Fixed case 70461: Tweak Settings text for appconfig is reversed.
  • Fixed case 70509: _find_best_match_for_domain_on_certificate should prefer the hostname.
  • Fixed case 70577: Add alternate password strength url to appconfig.
  • Fixed case 70673: Add puttykey.cgi to appconfig.
  • Fixed case 70701: Make user key actually optional in appconfig.
  • Fixed case 70705: RPM installed munin needs to be registered with appconfig.
  • Implemented case 64581: Add ability to get just the current file name via ExpVar.
  • Implemented case 66565: Add a script to generate case summary for releases.
  • Implemented case 68377: Add a warning when restoring an account from untrusted source.
  • Implemented case 68589: Optional forced registration of apps in appconfig before WHM use.
  • Implemented case 69533: Update Roundcube to 0.9.1.
  • Implemented case 69657: Whostmgr::ACLS should enable ConfigObj acls that do not require a license.
  • Implemented case 70329: Backup User Selection needs mass actions to enable/disable all.
  • Implemented case 70497: SNI support for litespeed.

11.38.0.18


2013-06-17
  • Fixed case 69809: List only resellers with proper ACLs for locale editing.
  • Fixed case 70317: Pass through environment variables from Exim.
  • Fixed case 70389: Use configured timeout for uploading backups.
  • Fixed case 70409: Mount virtfs bind mounts with MS_REC.
  • Fixed case 70465: Fix jailshell static mount count.
  • Fixed case 70477: Improve bin/quota fallback when no results available.

11.38.0.17


2013-06-12
  • Fixed case 69273: Fix broken radio button in FTP transport template.
  • Fixed case 69397: Restore SSL vhosts for all account package restores, not just dedicated IPs.
  • Fixed case 69433: Possibility to adjust the backup destination time out value in WHM.
  • Fixed case 69797: Permit all actions for resellers with the all ACL.
  • [security] Fixed case 69849: Don't pass custom transport password on the command line.
  • Fixed case 70157: Shared IPs not shown if they have changed.
  • Fixed case 70161: Ensure /usr/local/cpanel is mounted under jailshell.

11.38.0.16


2013-06-10
  • Fixed case 69665: Cpanel::AdminBin::Server should permit numbers in function names.

11.38.0.15


2013-06-10
  • [security] Fixed case 68189: Improve file uploading in Web Template Editor.
  • [security] Fixed case 68213: Address two XSS vulnerabilities.
  • [security] Fixed case 68433: Fix XSS vulnerabilities in entropychat.
  • [security] Fixed case 68645: Sanitize MySQL usernames in SQL statements.
  • [security] Fixed case 68733: Sanitize theme supplied to brandingimage.cgi.
  • [security] Fixed case 68965: Add missing ACL checks to WHM CGIs.
  • Fixed case 69093: Don't warn about inability to back up when backups disabled.
  • [security] Fixed case 69329: Add a warning when restoring an account from untrusted source.
  • [security] Fixed case 69401: Improve reseller ACL check when running langadmin.
  • [tests] Fixed case 69277: Remove internal setting when loading a backup destination.

11.38.0.13


2013-05-24
  • Fixed case 68329: Restore functionality to hook system.
  • Fixed case 68993: Report each device only once when checking quota.
  • Fixed case 69009: Preserve backup invalid destination password during backup.

11.38.0.12


2013-05-23
  • Fixed case 68565: Fixed a linked array reference in __ipmap__.
  • Fixed case 68717: Prevent duplication of cabundles returned by fetchSSLFiles.
  • Fixed case 68849: Count quota usage once per drive.
  • Fixed case 68881: Fix error message with custom backup transports.
  • Fixed case 68917: Improve exception handling in backups.

11.38.0.10


2013-05-22
  • Fixed case 62947: Restore mysqltuner.pl to shipped files.
  • Fixed case 65429: Support JSPs under Apache 2.4.
  • Fixed case 68081: Jailshell needs to not re-jail when inside the jail.
  • Fixed case 68117: Prevent PHP eio or dio extensions from used if Apache mod_ruid2.so is installed.
  • Fixed case 68137: Touch /etc/group so jailshell is updated.
  • Fixed case 68229: Restore backup exclude rules to be relative to the user home directory.
  • Fixed case 68321: Detect whether any Tomcat (5.5 or 7) installed.
  • Fixed case 68401: From header rewrites fail if the From header is missing.
  • Fixed case 68437: SSL cert data is not always written with the correct permissions.
  • Fixed case 68457: Deliver domains outside of the jail via SMTP to localhost.
  • Fixed case 68629: Fix out of memory error when downloading backups.
  • Fixed case 68677: Do not try to set up a virtfs mount if the mount point is a symlink.
  • Fixed case 68821: Fix failures resulting from incomplete virtfs changes.
  • Implemented case 68025: Warn users before they create an SSL wildcard vhost.

11.38.0.8


2013-05-21
  • Fixed case 66309: Remove apache* from yum excludes.
  • Fixed case 67469: Fix Apache 2.4 _wildcard_ userdata problem.
  • Fixed case 67557: Fix error when transferring from foreign control panel.
  • Fixed case 67673: Dnsadmin-ssl fails to load JSON::XS.
  • Fixed case 67753: Restore ability to specify From name in autoresponders.
  • Fixed case 67801: Mailtrap is missing from the required jailshell groups.
  • Fixed case 67805: Ensure that /etc/eximmailtrap is copied for jailshell.
  • [security] Fixed case 67945: Update MySQL 5.1 to 5.1.69-1.cp1136.
  • Fixed case 67985: Extend timeout for cpbackup_transporter tasks.
  • Fixed case 68037: Fix quota checking delays from too many virtfs mounts.
  • Implemented case 68225: Improve the quota script to use the quota command as a fallback.

11.38.0.7


2013-05-09
  • Fixed case 65181: Allow changing MySQL passwords.
  • Fixed case 67425: Virtuozzo clone flag failure (type 4).
  • Fixed case 67429: Revert chkservd changes to make sshd check connections.
  • Fixed case 67449: Cpanel::Redirect fails redirect to the proper place.
  • Fixed case 67477: Virtfs setup expected /etc/group to be shadowed.
  • Fixed case 67501: Preserve custom cron jobs when enabling new backup system.
  • Fixed case 67505: Jailshell to check for linux < 2.6.25 and skip read only mount attempt.
  • Fixed case 67533: Ensure checkallsslcerts runs nightly.

11.38.0.6


2013-05-08
  • Fixed case 64584: Use nfreeze instead of freeze in backup_restore_manager.
  • Fixed case 64849: Make backup error log contain newlines.
  • Fixed case 66741: Fix DNSOnly installation with 11.38.
  • Fixed case 67345: Inform admin of possible cause of chkservd failures.
  • Fixed case 67361: Jailshell not working in virtuozzo (type 3).
  • Fixed case 67373: Be clear about the source of the SSH port for chkservd.

11.38.0.5


2013-05-07
  • Fixed case 65629: Remove unneeded check for changemx in read-only mxadmin operations.
  • Fixed case 66629: Run linktest-df when running nativedf-install.
  • Fixed case 66665: Improve backup notifications when a backup fails.
  • Fixed case 66709: Don't unnecessarily log mirror IP addresses.
  • Fixed case 67005: Add missing dependency that prevented setsiteip from working.
  • Fixed case 67045: Updated Apache 2.4 directives to include cobra fix.
  • [security] Fixed case 67065: Prevent ssh keys from being overwritten by whm resellers.
  • Fixed case 67089: Send only one email on a successful backup.
  • Fixed case 67105: Changing users shell in WHM fails properly update crontab.
  • Fixed case 67129: CLONE_NEWPID fails under CentOS 6 xenpv.
  • Fixed case 67245: Prevent locale.js from throwing an exception on [output,apos].

11.38.0.1


2013-05-03
  • Fixed case 64536: Fixed quirky behavior of calendar after adding user to queue.
  • Fixed case 64566: Don't allow backup config with nowhere to back up.
  • [security] Fixed case 64649: Fix email selection when adding an auto responder from webmail.
  • Fixed case 65333: Add target data to XLIFF output.
  • Fixed case 65405: Change makevar glob from star to ampersand due to binary issues.
  • Fixed case 65493: Don't destroy files edited in File Manager when over quota.
  • Fixed case 65693: Update output,url in Cpanel::CPAN to match the one on CPAN.
  • Fixed case 65833: Fix generation of metadata for Courier certificates.
  • Fixed case 66045: Ensure failed files are preserved correctly.
  • Fixed case 66093: Don't destroy branding when user is over quota.
  • Fixed case 66597: Avoid leaving some temporary files when a user is over quota.
  • Fixed case 66605: Ensure that /proc is mounted when it should be.
  • Fixed case 66645: SSLUseStapling should not be enabled if openssl < 0.9.8g.
  • Fixed case 66649: Give more information on current upcp process.
  • Fixed case 66661: Convert some backup messages to logger calls.
  • Fixed case 66761: Ensure that SiteIP.pm::set() abort()s the httpd.conf meta-transaction on fail.
  • Fixed case 66773: Fix auto responders in a jailshell on CentOS 6.
  • Fixed case 66805: Bump major version to 11.38.
  • Fixed case 66813: Different versions of virtuozzo have different clone breakage.
  • Implemented case 63738: Add accesshash information to cPanel access log.
  • Implemented case 66429: Always report which mirror is used on an http request.

11.37.0.7


2013-04-26
  • Fixed case 64525: Added help text to local DNS option.
  • Fixed case 65425: Build mailman properly if /usr/local/cpanel/3rdparty/mailman is missing.
  • Fixed case 65645: Only update pg_hba.conf one time with security rules.
  • Fixed case 65761: Handle relative symlinks properly in writefile.
  • Fixed case 65945: Loosen permissions when generating .ftpquota.
  • Fixed case 66053: Fix WHM Restore a Full Backup/cpmove File error page.
  • Fixed case 66057: Rebuild userdomains after updating bandwidth limit.
  • Fixed case 66069: Make check_cpanel_rpms exit nonzero on error.
  • Fixed case 66089: Avoid recompiling Net::SSLeay and Filesys::Df when not required.
  • Fixed case 66113: Whitespace breaking from SSL project prevents search and copy.
  • Fixed case 66129: Speed up cpanellogd when new backup system enabled.
  • Fixed case 66181: Fix account transfer problem with errors from .bashrc.
  • Fixed case 66197: Make legacy API1/2 SSL installs determine domain implicitly from the cert.
  • Fixed case 66489: LIVEAPI cannot handle file uploads for php.
  • Fixed case 66545: Jailexec cannot write to /var/log on centos 6 breaking autoresponders.
  • Fixed case 66553: Fix "barber pole" on certain pages due to styling issue.
  • Fixed case 66593: Skip CLONE_NEWNS CLONE_NEWIPC on virtuozzo for jailshell.
  • Implemented case 63996: Install Perl and PECL ImageMagick modules.

11.37.0.5


2013-04-24
  • Fixed case 61581: Remove ancient version of Interchange.
  • Fixed case 61599: Make build_transfers keep last head rev locally.
  • Fixed case 62884: Update rpm.versions to look for 11.36 RPMs.
  • Fixed case 62905: Remove unused subroutines from Cpanel::DIp.
  • Fixed case 63058: Ensure $tarball->read() modifies 2nd argument.
  • Fixed case 63494: Bypass processing empty filters to avoid LRU cache reset in exim.
  • Fixed case 63584: Improve error handling for cpanelsync.
  • Fixed case 63659: WHM Privs page is missing a closing a tag causing all the privs to be links.
  • Fixed case 63660: Fix "Error Code" message when installing RPMs.
  • Fixed case 63682: Fix mainacct_central_user_filter when no filter is present.
  • Fixed case 63771: Always enable security tokens.
  • [security] Fixed case 63915: Verify correct reads/writes to user SSLStorage.
  • Fixed case 63965: Address additional lower risk security concerns for ssl project.
  • Fixed case 64061: Fixed t/Cpanel-Backup-Config.t.
  • Fixed case 64067: UAPI though JSON::XS fails without convert_blessed being enabled.
  • Fixed case 64125: Fix sandbox url_templates to point to 11.36.
  • Fixed case 64134: Do not load bashrc when copying an account from a server.
  • Fixed case 64172: Exim header rewrites should ignore Mailer-Daemon messages.
  • Fixed case 64174: Restore upgrade_in_progress.txt to its original location.
  • Fixed case 64196: Revert Optimization to Cpanel::NSCD and add tests.
  • Fixed case 64204: Fix backup_restore_manager smoker failure.
  • Fixed case 64227: Fix errors on backups page in cPanel.
  • Fixed case 64239: Update JSON::XS to 2.33_06 with utf8 fixes.
  • Fixed case 64241: Add missing json::xs build-tools update files for 2.33_06.
  • Fixed case 64247: Reverse symlinks and move adminbins.
  • Fixed case 64276: LegacyBackups taskrun script tries to load compiled-only module.
  • Fixed case 64293: Jail commands run from exim pipes for jail/noshell users.
  • Fixed case 64334: Fix email autoresponders to use email user in from header.
  • Fixed case 64368: Branding does not warn when it cannot access its files.
  • [security] Fixed case 64382: Prevent apache jails from being enabled if mod_ruid2 is not at least 0.9.4a.
  • [security] Fixed case 64400: Cpanel::Cron api commands allow injecting arbitrary content.
  • Fixed case 64460: Remove Cpanel::AdminBin::Server from distribution.
  • Fixed case 64478: Fix validate all with no destiantions.
  • Fixed case 64495: AdminBin Server needs to send nonrefs as plaintext to adminbins.
  • Fixed case 64501: Smoker failure in Cpanel::Chkservd::Tiny.
  • Fixed case 64503: Smoker failure t/Whostmgr-Accounts.t due to locks.
  • Fixed case 64504: Fix smoker failure t/whostmgr-bin-xml-api.pl_autocheck-all-commands.t.
  • Fixed case 64522: Remove tautology.
  • Fixed case 64528: Added helptext to custom template and cleaned up other destinations.
  • Fixed case 64532: Clarify meaning of section header.
  • Fixed case 64534: Update instructions for new interface names.
  • Fixed case 64535: Fix for destination save bug in webkit based browsers.
  • Fixed case 64549: sshd is not checked to see if it is responding.
  • Fixed case 64552: Install sets wrong permissions on bin/cpwrap, bin/jailexec.
  • Fixed case 64560: Fix portsadmin output formatting.
  • Fixed case 64570: Fix get_data_from_form() in ajaxapp.js from SSL phase 3 merge.
  • Fixed case 64571: Fix t/Whostmgr-API-1-Httpd.t.
  • Fixed case 64583: Don't kill off cpsrvd on upgrade to 11.38.
  • Fixed case 64592: Optimized the loop that compares the bad passwords.
  • [security] Fixed case 64601: Make backup code use SafeStorable.
  • Fixed case 64606: Create /var/cpanel/conf/apache if it doesn't exist.
  • Fixed case 64623: Add charset to content type header for json requests.
  • Fixed case 64633: Live API system does not show which file contains the error on failure.
  • Fixed case 64637: AdminBin::Server should provide a better error on missing adminbin.
  • Fixed case 64641: Cpanel::AdminBin refactoring does not pass back errors properly.
  • Fixed case 64665: Each update to $apacheconf_data in ApacheConf.pm should update the mtime.
  • Fixed case 64669: Ensure that update_vhost() always calls close() explicitly.
  • Fixed case 64721: Cpanel::SimpleSync::CORE needs to be compiled into setupvirtfs.
  • Fixed case 64725: UAPI / API3 support for LIVEAPI.
  • [security] Fixed case 64729: Don't allow remote execution of internal API 1 calls.
  • Fixed case 64837: Fixed destiantion mask handling on backup type incremental.
  • Fixed case 64861: Updated error checking on SFTP destination connections to catch errors on STDERR.
  • Fixed case 64893: Fixed typo in SFTP module for backups.
  • Fixed case 64933: Update MySQL 5.1 to 5.1.36-3cp1136.
  • Fixed case 64941: Update phpMyAdmin to 3.5.8.
  • Fixed case 64997: Always show correct FTP port in client configuration.
  • Fixed case 65041: Added logic to remove temporary directories after restoration is complete.
  • Fixed case 65053: Bring the regexp that the backend uses to validate SSL keys and certs to JS.
  • Fixed case 65069: Fix chkservd check for ftpd when using a custom port.
  • Fixed case 65133: Update MySQL 5.5 to 5.5.30-4.cp1136.
  • Fixed case 65161: Fix WHM Limit Bandwidth Usage value validation.
  • Fixed case 65169: Fix broken filter interface in webmail.
  • Fixed case 65173: Fix broken deregister function in cphulkd.
  • Fixed case 65205: Make new SSL vhosts use the same CGI privileges as in the cpuser file.
  • Fixed case 65249: Fix to restore DNS zone when autodiscover subdomains is disabled.
  • Fixed case 65305: Use a file ext and format flag for locale copy to match copy logic.
  • Fixed case 65325: Fix regexp for matching an Apache vhost with a given port. Add tests.
  • Fixed case 65337: Fix saving in Edit Locale live mode.
  • Fixed case 65369: Fix logaholic AdminBin calls.
  • Fixed case 65373: Make sure open_files_limit is placed appropriately.
  • Fixed case 65385: Make Cpanel::AdminBin::Serializer use shrink to roundtrip by downgrading utf8.
  • Fixed case 65389: Update PHP to 5.3.17-5.cp1136 with MySQLi support.
  • Fixed case 65401: Fix addpop and delpop.
  • Fixed case 65409: Fix breakages in CJT ajaxapp.js error notices.
  • Fixed case 65413: Fix image in Mail Troubleshooter for BoxTrapper.
  • Fixed case 65437: Prevent assigning a single non-shared IP to multiple accounts.
  • Fixed case 65465: Make API2 and API1 SSL installs interact correctly with other API2 & API1 calls.
  • Fixed case 65481: Restore validate.js to attaching to form submit button "click" events.
  • Fixed case 65497: Update to cPanel exim 4.80.1-1.
  • Fixed case 65509: Add autofixer for Pure-FTPd Bind problem.
  • Fixed case 65637: Check existing ssh keys when generating a new key from backup configuration.
  • Fixed case 65653: Don't exclude metadata from user backups.
  • Fixed case 65677: Run rpmup on DNSONLY.
  • Fixed case 65761: Handle relative symlinks properly in writefile.
  • Fixed case 65789: Honor the --skiphomedir flag when packaging an account.
  • Fixed case 65801: Fix error handling on Restore A Full Backup or cpmove Archive.
  • Fixed case 65809: Restore cpanellogd pid file.
  • Fixed case 65817: Do not reset apache include configuration when a local error is detected.
  • Fixed case 65821: Pkgacct fails on 11.38 if user is over quota.
  • Fixed case 65857: Fix copy about CGI privs and upgrading accounts.
  • Fixed case 65865: Fix legacy backup system with accounts created before 11.38.
  • Fixed case 65889: Fix empty sorting preferences in Horde.
  • Fixed case 66025: Fix jailshell with /dev/null read only permission.
  • Fixed case 66041: Fixed a misspelling.
  • Fixed case 66065: Added read-only class to retention fields when incremental is set.
  • Fixed case 66133: Fix LegacyBackups install task.
  • Implemented case 41691: Add crond to the service manager.
  • Implemented case 57803: Integrate Archive::Tar::Builder, pigz into pkgacct.
  • Implemented case 61132: Use Cpanel::Logger for cphulkd.
  • Implemented case 63126: Remove dependency loop from Cpanel::Locale::Utils::MkDB.
  • Implemented case 63384: Add an option to rewrite the From: header to the actual sender.
  • Implemented case 63491: SSL Project Phase One.
  • Implemented case 63643: SSL Project Phase Two.
  • Implemented case 63907: Convert Cpanel::JSON backend to JSON::XS.
  • Implemented case 63912: Convert Cpanel::AdminBin and AdminBins to use Cpanel::AdminBin::Serializer.
  • Implemented case 63941: Add initial locale_tool project changes.
  • Implemented case 64019: Improvements to WHM Backups; an Angry Llama production.
  • Implemented case 64156: Sort etc/cpanel.config.
  • Implemented case 64171: Make the adminbin system pluggable and eliminate cpwrap.
  • Implemented case 64177: Apache Jails.
  • Implemented case 64194: Remove legacy apache templates.
  • Implemented case 64197: Jail Shell Update.
  • Implemented case 64242: Change jailshell to use clone to provide a limited /proc.
  • Implemented case 64294: Force cron to use jailshell when the users shell is jailshell or noshell.
  • Implemented case 64310: Make setupvirtfs compiled to decrease jailshell login time.
  • Implemented case 64388: Update cplint to 0.059-1.cp1136.
  • Implemented case 64401: Update minimum required version of Text::Extract::MaketextCallPhrases.
  • Implemented case 64432: SSL Project Phase Three.
  • Implemented case 64445: New installs get MySQL 5.5.
  • Implemented case 64455: Add tweaks for setting the autodiscovery host and prefered mail service.
  • Implemented case 64591: Updated de/authorize autofixers for multi server support.
  • Implemented case 64605: SSL project phase 3 changes to maketext() strings from documentation review.
  • Implemented case 64733: Add a tool for showing all available UAPI calls and args for docs.
  • Implemented case 65589: Support cagefs_enter for exim pipes.
  • Implemented case 65745: Log summary of updates for historical purposes.
  • [tests] Fixed case 62978: Convert scripts/installpostgres as a modulino.
  • [tests] Fixed case 64436: Improve error handling in cpwrap.
  • [tests] Fixed case 64557: Remove warnings from Cpanel::SysQuota.
  • [tests] Fixed case 64953: Make AdminBin error reporting more consistent.