File: //proc/self/root/var/cpanel/changelog.cache
pst0� ����������$��������2014-03-24, 18:00 (UTC)��� published�����<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 85329: Sensitive information disclosed via multiple log files. </li> <li> [security] Fixed case 86337: Injection of arbitrary DNS zonefile contents via cPanel DNS zone editors. </li> <li> [security] Fixed case 87205: Open redirect vulnerability in FormMail -clone. </li> <li> [security] Fixed case 88577: Arbitrary file overwrite via trackupload parameter. </li> <li> [security] Fixed case 88793: External XML entity injection in WHM locale upload interface. </li> <li> [security] Fixed case 89009: Arbitrary code execution for ACL limited resellers via WHM Activate Remote Nameservers interface. </li> <li> [security] Fixed case 89057: Fix self-XSS vulnerability on reseller branding download page. </li> <li> [security] Fixed case 89133: Fix self-stored XSS vulnerability in WHM Backup Configuration. </li> <li> [security] Fixed case 89137: Fix self-XSS vulnerability in WHM Local XML Upload. </li> <li> [security] Fixed case 89377: Arbitrary code execution for ACL limited resellers via WHM objcache. </li> <li> [security] Fixed case 89729: Insufficient ACL checks in WHM Modify Account interface. </li> <li> [security] Fixed case 89733: Injection of arbitrary data into cpuser configuration files via wwwacct. </li> <li> [security] Fixed case 89789: Arbitrary code execution for ACL limited resellers via batch API. </li> <li> [security] Fixed case 90001: Sensitive information disclosed via update-analysis tarballs. </li> <li> [security] Fixed case 90213: Self XSS vulnerability in WHM MySQL Root Password interface. </li> <li> [security] Fixed case 90225: Multiple self XSS vulnerabilities in CloudLinux LVE Manager. </li> <li> [security] Fixed case 90249: Self XSS vulnerability in WHM Xferlog Tail. </li> <li> [security] Fixed case 90257: Self XSS vulnerability in WHM Edit System Mail Preferences. </li> <li> [security] Fixed case 90261: Stored XSS Vulnerability in WHM SSH Check. </li> <li> [security] Fixed case 90265: Open mail relay via injection of FormMail -clone parameters. </li> <li> [security] Fixed case 90289: Self XSS vulnerability in WHM Zone Editor. </li> <li> [security] Fixed case 90773: Self-stored XSS vulnerability in cPanel Hotlink Protection. </li> <li> [security] Fixed case 90777: Self-stored XSS vulnerability in Web Disk Accounts. </li> <li> [security] Fixed case 90817: Self XSS vulnerability in listfmfiles.json. </li> <li> [security] Fixed case 90837: Self-stored XSS vulnerability in Redirects. </li> <li> [security] Fixed case 91253: Stored XSS vulnerability in cPAddons Moderation Requests. </li> <li> [security] Fixed case 91457: Self XSS vulnerability in cPanel PHP Test. </li> <li> [security] Fixed case 91461: Self XSS vulnerability in Entropy Banner Upload. </li> <li> [security] Fixed case 91633: Self XSS vulnerability in Fetch Mail Archive. </li> <li> [security] Fixed case 91677: Self-stored XSS vulnerability in cPanel Image Manager Scaler. </li> <li> [security] Fixed case 91681: Self-stored XSS vulnerability in cPanel Image Manager Thumbnailer. </li> <li> [security] Fixed case 91717: Self-XSS vulnerabilities in BoxTrapper _getaccountinfo/BoxTrapper_getemaildirs. </li> <li> [security] Fixed case 91741: Arbitrary code execution via backup excludes. </li> <li> [security] Fixed case 91973: Self XSS vulnerability in cPanel Image Manager Scaler. </li> <li> [security] Fixed case 91977: Self XSS vulnerability in cPanel Image Manager Format Converter. </li> <li> [security] Fixed case 91981: XSS Vulnerabilities in cPanel Image Manager Thumbnailer. </li> <li> [security] Fixed case 92133: Self XSS vulnerability in Delete Private SSH Key. </li> <li> [security] Fixed case 92157: Stored XSS vulnerability in FrontPage Install/Uninstall. </li> <li> [security] Fixed case 92421: Self XSS vulnerability in Mail Settings Container AJAX. </li> <li> [security] Fixed case 92489: SSH private key disclosure during key import process. </li> <li> [security] Fixed case 92593: Reflected XSS vulnerability in Entropy Search. </li> <li> [security] Fixed case 93089: Self XSS Vulnerability in Redirect Removal Confirm. </li> <li> [security] Fixed case 93125: Self XSS Vulnerability in Default Website Page. </li> <li> [security] Fixed case 94201: Insufficient validation allows password reset of arbitrary users. </li></ul><p> </p></div>
</div>����content��2014-04-01, 02:00 (UTC)����updated��Change Log for 11.38.2.23����title�������
production��11.38����tags��������2014-02-05, 02:00 (UTC)��� published����y<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 84385: Arbitrary code execution as cpanel-horde user via cache file poisioning. </li> <li> [security] Fixed case 84633: Fix multiple self XSS vulnerabilities in Cpanel::Htaccess. </li> <li> [security] Fixed case 84877: Fix self XSS vulnerability in Initial Setup Wizard. </li> <li> [security] Fixed case 84881: Fix stored XSS vulnerability in Set Default Address. </li> <li> [security] Fixed case 84885: Fix XSS in /x3/mail/filters/editfilter.html. </li> <li> [security] Fixed case 84893: Fix XSS vulnerabilities in BoxTrapper Configuration. </li> <li> [security] Fixed case 84897: Fix self XSS vulnerabilities in HTTP Bandwidth View. </li> <li> [security] Fixed case 84901: Fix stored XSS vulnerability in Image Thumbnailer. </li> <li> [security] Fixed case 85029: Fix self XSS vulnerability in Import Addresses/Forwarders. </li> <li> [security] Fixed case 85133: Fix stored XSS vulnerability in File Editor. </li> <li> [security] Fixed case 85177: Fix multiple self XSS vulnerabilities in CGI Center. </li> <li> [security] Fixed case 85229: Fix multiple self XSS vulnerabilities in PostgreSQL database deletion. </li> <li> [security] Fixed case 85249: Fix XSS vulnerability in Add Postgres User to DB. </li> <li> [security] Fixed case 85273: Fix self-XSS vulnerability in Hotlink Protection. </li> <li> [security] Fixed case 85457: Fix self XSS vulnerability in BoxTrapper Verification. </li> <li> [security] Fixed case 85461: Fix multiple self XSS vulnerabilities in Cpanel::Boxtrapper. </li> <li> [security] Fixed case 85589: Fix XSS vulnerability in Tweak Settings. </li> <li> [security] Fixed case 85981: Fix XSS vulnerability in WHM Add A Package interface. </li> <li> [security] Fixed case 86017: Fix XSS vulnerability in Security Questions interfaces. </li> <li> [security] Fixed case 86329: Fix stored XSS vulnerability in Edit MX Entry. </li> <li> [security] Fixed case 86381: Disclosure of root's accesshash to ACL limited resellers via WHM xml-api. </li> <li> [security] Fixed case 86453: Injection of arbitrary settings into cpuser files via account creation. </li> <li> [security] Fixed case 86461: Overwriting of trusted inputs to third party hooks scripts. </li> <li> [security] Fixed case 86857: Limited arbitrary file overwrite for ACL limited resellers via domain parking. </li> <li> [security] Fixed case 87081: Fix self-XSS vulnerability in Redirects. </li> <li> [security] Fixed case 87317: Arbitrary code execution as root for ACL limited resellers via cluster configuration interfaces. </li> <li> [security] Fixed case 87421: Fix XSS vulnerability in code editor. </li> <li> [security] Fixed case 87433: Injection of arbitrary settings into cpuser files via mxcheck setting. </li> <li> [security] Fixed case 87437: ACL limited resellers allowed to disable digest authentication for arbitrary accounts. </li> <li> [security] Fixed case 87457: Fix self-XSS vulnerability in cPAddons Feature Manager. </li> <li> [security] Fixed case 87625: ACL limited resellers allowed to restore backups for the accounts they control. </li> <li> [security] Fixed case 88061: Mis-assignment of IP addresses for ACL limited resellers via createacct. </li> <li> [security] Fixed case 88093: Fix XSS vulnerability in Full Backup. </li> <li> [security] Fixed case 88097: Fix XSS vulnerability in Restore Files. </li> <li> [security] Fixed case 88129: Fix XSS vulnerability in Restore a MySQL Backup. </li> <li> [security] Fixed case 88133: Fix XSS vulnerability in Restore Email Filters. </li> <li> [security] Fixed case 88137: Fix XSS vulnerability in Full Backup. </li> <li> [security] Fixed case 88141: Fix XSS vulnerability in IP Deny Manager. </li> <li> [security] Fixed case 88145: Fix XSS vulnerability in IP Deny Manager. </li> <li> [security] Fixed case 88149: Fix XSS vulnerability in IP Deny Manager index page. </li> <li> [security] Fixed case 88153: Fix XSS vulnerability in Image Tools. </li> <li> [security] Fixed case 88157: Fix XSS vulnerability in various pages that save files. </li> <li> [security] Fixed case 88165: Fix XSS vulnerability in Legacy File Manager file extraction. </li> <li> [security] Fixed case 88173: Fix XSS vulnerability in Legacy File Manager viewer. </li> <li> [security] Fixed case 88181: Fix XSS vulnerability in FrontPage status listing. </li> <li> [security] Fixed case 88209: Fix multiple XSS vulnerabilities in Cpanel::LeechProtect. </li> <li> [security] Fixed case 88213: Fix XSS vulnerability in Network Tools. </li> <li> [security] Fixed case 88229: Fix XSS vulnerability in Parked Domains. </li> <li> [security] Fixed case 88253: Fix XSS vulnerability in PostgreSQL user removal. </li> <li> [security] Fixed case 88257: Fix XSS vulnerability in Analog log viewer. </li> <li> [security] Fixed case 88261: Fix XSS vulnerability in subdomain redirects. </li> <li> [security] Fixed case 88265: Fix XSS vulnerability in adding a subdomain. </li> <li> [security] Fixed case 88269: Fix stored XSS vulnerability in cPAddons. </li> <li> [security] Fixed case 88277: Fix XSS vulnerability in MySQL APIs. </li> <li> [security] Fixed case 88281: Fix multiple XSS vulnerabilities in BoxTrapper queue search. </li> <li> [security] Fixed case 88285: Fix XSS vulnerability in BoxTrapper::changestatus. </li> <li> [security] Fixed case 88289: Fix XSS vulnerability in BoxTrapper::editmsg. </li> <li> [security] Fixed case 88293: Fix XSS vulnerability in BoxTrapper::listmsgs. </li> <li> [security] Fixed case 88297: Fix XSS vulnerability in BoxTrapper::messageaction. </li> <li> [security] Fixed case 88301: Fix XSS vulnerability in BoxTrapper::resetmsg. </li> <li> [security] Fixed case 88305: Fix stored XSS vulnerability in BoxTrapper::showemails. </li> <li> [security] Fixed case 88309: Fix XSS vulnerability in BoxTrapper::showlog. </li> <li> [security] Fixed case 88313: Fix XSS vulnerability in BoxTrapper::showmsg. </li> <li> [security] Fixed case 88321: Fix XSS vulnerability in BoxTrapper::getboxconfdir. </li> <li> [security] Fixed case 88325: Fix multiple XSS vulnerability in BoxTrapper. </li> <li> [security] Fixed case 88341: Arbitrary code execution for ACL limited resellers during account creation. </li></ul><p> </p></div>
</div>����content��2014-02-06, 02:00 (UTC)����updated��Change Log for 11.38.2.16����title�������
production��11.38����tags��������2014-02-05, 02:00 (UTC)��� published����s<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 81125: Allow redirect to installed SSL hosts for wildcard certs. </li> <li> Fixed case 83681: Allow MySQL upgrades even if mysql is disabled. </li> <li> Fixed case 89825: Fix parking a domain through WHM. </li> <li> Implemented case 84481: Update ioncube loader to 4.5.0. </li></ul><p> </p></div>
</div>����content��2014-02-05, 02:00 (UTC)����updated��Change Log for 11.38.2.17����title�������
production��11.38����tags��������2013-12-24, 18:00 (UTC)��� published�¸<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 84681: Arbitrary file read for ACL limited reseller accounts via XML-API. </li></ul><p> </p></div>
</div>����content��2013-12-24, 18:00 (UTC)����updated��Change Log for 11.38.2.15����title�������
production��11.38����tags��������2013-12-18, 22:00 (UTC)��� published����ˆ<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 63541: Arbitrary code execution via user supplied translatable phrases. </li> <li> [security] Fixed case 69517: World-writable Counter directory allowed arbitrary code execution. </li> <li> [security] Fixed case 71125: Arbitrary file ownership change via cPanel branding system. </li> <li> [security] Fixed case 73125: After multiple security token failures, session credentials were not invalidated. </li> <li> [security] Fixed case 73193: Unsafe disclosure of security token during session based login. </li> <li> [security] Fixed case 74333: The session credentials were disclosed during reseller override logins. </li> <li> [security] Fixed case 78045: Stored XSS vulnerability in WHM Daily Process Log screen. </li> <li> [security] Fixed case 78089: Password disclosure during forced cPAddons upgrade. </li> <li> [security] Fixed case 79277: Arbitrary file read vulnerability in WHM Edit DNS Zone interface. </li> <li> [security] Fixed case 80633: Arbitrary file write via X3 countedit.cgi. </li> <li> [security] Fixed case 81373: Bandmin passwd file stored with world-readable permissions. </li> <li> [security] Fixed case 81377: Multiple XSS vulnerabilities found in Bandmin. </li> <li> [security] Fixed case 81429: URL filtering flaws allowed access to restricted resources. </li> <li> [security] Fixed case 81641: Path traversal flaw allows arbitrary code execution for restricted cPanel accounts. </li> <li> [security] Fixed case 81885: Multiple self-XSS vulnerabilities found in cPanel. </li> <li> [security] Fixed case 82309: Insecure storage of Logaholic session files was found. </li> <li> [security] Fixed case 80113: cPHulk injection via crafted SSH connections. </li> <li> [security] Fixed case 82725: XSS vulnerability found in YUI 2. </li> <li> [security] Fixed case 82733: Database grant files stored with world-readable permissions. </li> <li> [security] Fixed case 83929: A cross-account XSRF attack against reseller override logins was possible via goto_uri. </li> <li> Fixed case 83501: Disallow \g in MySQL GRANT statements during account restores. </li></ul><p> </p></div>
</div>����content��2013-12-18, 22:00 (UTC)����updated��Change Log for 11.38.2.13����title�������
production��11.38����tags��������2013-10-30, 22:00 (UTC)��� published�û<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 76541: Do not remove file name provided by user while cleaning up. </li> <li> Fixed case 81125: Prevent hang on installation of service SSL. </li></ul><p> </p></div>
</div>����content��2013-10-30, 22:00 (UTC)����updated��Change Log for 11.38.2.12����title�������
production��11.38����tags��������2013-10-29, 22:00 (UTC)��� published����o<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 69513: Create Logaholic directories with 700 permissions. </li> <li> [security] Fixed case 74525: Prevent leaking of security token in Manage SSL Hosts interface. </li> <li> [security] Fixed case 76085: Prevent virtual email accounts owned by a reseller from manipulating translations. </li> <li> [security] Fixed case 76541: Remove only the temporary file when deleting unused file uploads. </li> <li> [security] Fixed case 76549: Sanitize multipart POST data to prevent fake file uploads. </li> <li> [security] Fixed case 76789: Create transfer logs with 0600 permissions. </li> <li> [security] Fixed case 76869: Update Dovecot handling of checkpassword authentication for CVE-2013-6171. </li> <li> [security] Fixed case 76941: Fix Cpanel::LogMeIn session expiration. </li> <li> [security] Fixed case 78177: Patch mailman CGIs to run setuid mailman. </li> <li> [security] Fixed case 78253: Fix WHM mod_userdir tweak compatibility with mod_ruid2. </li> <li> [security] Fixed case 79133: Sanitize whitespace in SSL certificates before installation. </li> <li> Implemented case 80245: Add cpanel-common-licenses RPM. </li> <li> Implemented case 75937: Fix Apache 2.4.5+ proxy subdomains with SSL. </li> <li> Implemented case 80745: Fixed Contact Customer Support link piping issue. </li></ul><p> </p></div>
</div>����content��2013-10-29, 22:00 (UTC)����updated��Change Log for 11.38.2.11����title�������
production��11.38����tags��������2013-09-10, 18:00 (UTC)��� published����Ú<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 75097: Don't install modules to cPanel perl using perlinstaller. </li> <li> [security] Fixed case 76029: Update RoundCube to 0.9.3. </li> <li> Fixed case 76205: Remove buttons to add and edit users through phpMyAdmin. </li> <li> Fixed case 77013: Apply phpMyAdmin patch for large table export problem. </li> <li> Fixed case 77285: phpMyAdmin: Fix import from sql query form. </li></ul><p> </p></div>
</div>����content��2013-09-10, 22:00 (UTC)����updated��Change Log for 11.38.2.7����title�������
production��11.38����tags��������2013-09-03, 18:00 (UTC)��� published����þ<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 68205: Update cPAddon configuration as the user. </li> <li> [security] Fixed case 71265: Prevent shell execution in autorespond. </li> <li> [security] Fixed case 71701: Fix arbitrary module load in cpaddons.pl. </li> <li> [security] Fixed case 71705: Don't write corrupt data to cPAddons configuration. </li> <li> [security] Fixed case 71709: Prevent HTML injection in cPAddons. </li> <li> [security] Fixed case 71721: Fix several security issues with cPAddons. </li> <li> [security] Fixed case 71725: Sanitize input when loading modules. </li> <li> [security] Fixed case 71733: Prevent users from installing cPAddons as other users. </li> <li> [security] Fixed case 73565: Save cpmove files with proper permissions. </li> <li> [security] Fixed case 73585: Prevent corruption of httpd.conf through DocumentRoot. </li> <li> [security] Fixed case 73609: Improve safety of account rearrange. </li> <li> [security] Fixed case 73777: Encode user passwords in session files. </li> <li> [security] Fixed case 74609: Prevent path traversal when reading nvdata. </li> <li> Fixed case 74625: Fix locale XML reseller privilege escalation. </li> <li> [security] Fixed case 75113: Only allow root to use the "stor" nvset paramater. </li> <li> [security] Fixed case 75169: Sanitize module names before loading in cPAddons. </li> <li> [security] Fixed case 75413: Don't let non-root users run cpaddons.pl. </li> <li> [security] Fixed case 75417: Prevent an XSS attack in cpaddons_report.pl. </li> <li> [security] Fixed case 75573: Prevent file manipulation when unsuspending account. </li> <li> [security] Fixed case 75605: Prevent jailshell escape with two-arg open. </li> <li> Fixed case 76137: Preserve random cookie when invalid security token used. </li> <li> [security] Fixed case 76157: Prevent infinite loop in password encoding/decoding. </li> <li> [security] Fixed case 76161: Don't use additional cookie for session file password encoding. </li></ul><p> </p></div>
</div>����content��2013-09-03, 22:00 (UTC)����updated��Change Log for 11.38.2.6����title�������
production��11.38����tags��������2013-09-03, 18:00 (UTC)��� published����7<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 72709: Update Roundcube to 0.9.2. </li> <li> Fixed case 75017: Update phpMyAdmin from version #4.0.4.2 to version #4.0.5. </li> <li> Fixed case 75085: Note that exporting large databases is broken in phpMyAdmin. </li></ul><p> </p></div>
</div>����content��2013-09-03, 18:00 (UTC)����updated��Change Log for 11.38.2.3����title�������
production��11.38����tags��������2013-08-15, 22:00 (UTC)��� published�����<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 71685: JSON::XS and SSL certificate encoding decoding failures. </li> <li> Fixed case 73481: Fix misencoded Russian output. </li> <li> [security] Fixed case 74209: Update phpMyAdmin 4 to 4.0.4.2. </li> <li> Fixed case 74589: Display domain name when generating a certificate. </li> <li> Fixed case 74597: Fix failure to install Perl module in cPanel. </li> <li> Fixed case 74793: Fix additional phpMyAdmin 4 integration issues. </li> <li> Fixed case 74961: Update Archive::Tar::Builder to 1.2. </li> <li> Fixed case 74781: Packages: Fix trailing slash added to long file names. </li> <li> Fixed case 74517: Packages: Correct handling of member names in LongLink blocks. </li></ul><p> </p></div>
</div>����content��2013-08-15, 22:00 (UTC)����updated��Change Log for 11.38.2.1����title�������
production��11.38����tags��������2013-08-15, 22:00 (UTC)��� published����?<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 64259: Allow creation of proxy subdomains without autodiscover. </li> <li> Fixed case 70149: Fix account transfers with an empty tarroot. </li> <li> Fixed case 74673: Allow an ssl host for the hostname to be installed on any ip on the server. </li> <li> Fixed case 75065: Fix quota checking delay related to NFS. </li> <li> Fixed case 75329: Restore the ability to disable security tokens. </li> <li> Fixed case 75385: Properly restore mail by default on package restoration. </li></ul><p> </p></div>
</div>����content��2013-08-15, 22:00 (UTC)����updated��Change Log for 11.38.2.2����title�������
production��11.38����tags��������2013-08-06, 18:00 (UTC)��� published����$<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 61499: Wait to start RoR until after cpsrvd is started. </li> <li> Fixed case 61909: Keep only one entry for each version in cp_schema_version table. </li> <li> Fixed case 62489: Make PHP homeloader work with newer PHPs. </li> <li> Fixed case 64209: Do not remove A record when deleting main MX entry using cPanel. </li> <li> Fixed case 69149: Improve feature showcase error handling. </li> <li> Fixed case 69689: Do not restore emails from subdomains when subdomains are not restored. </li> <li> Fixed case 70201: Normalize IP display in WHM. </li> <li> Fixed case 70401: Improve UI when checking backup destinations in WHM. </li> <li> Fixed case 70513: Allow backups to WebDAV servers with non-DAV root. </li> <li> Fixed case 70681: Make SSL's domain matching case-insensitive for ASCII domains. </li> <li> Fixed case 70865: Allow calling safemkdir with an octal number. </li> <li> Fixed case 70917: Fix remaining uses of old-style safemkdir calls. </li> <li> Fixed case 70969: Fix 'restore mail config' option when restoring an account from a legacy backup. </li> <li> Fixed case 70993: Properly unmount deleted mount paths for jailshell. </li> <li> Fixed case 71157: Prevent duplicate virtfs mounts when /home is symlinked. </li> <li> Fixed case 71205: Specify Options None when no options are enabled. </li> <li> Fixed case 71213: Fix running exim under jailexec on CentOS 6. </li> <li> Fixed case 71261: Fix typos in Cpanel/SSL/Domain.pm. </li> <li> Fixed case 71321: Add branch name in email smoker title. </li> <li> Fixed case 71405: Fix Roundcube upgrade when using SQLite. </li> <li> Fixed case 71833: Prevent lock contention when updating Tweak Settings. </li> <li> Fixed case 71881: Increased timeout for auto generated resellers. </li> <li> Fixed case 71901: Do not apply rlimits on pigz, and improve error reporting. </li> <li> Fixed case 72109: Update virtfs for jailed user when jailapache is turned on. </li> <li> Fixed case 72201: Improve description of backup directory. </li> <li> Fixed case 72257: Improve file cleanup when both daily and monthly need to run. </li> <li> Fixed case 72681: Fix SSL Parser handling the text "key". </li> <li> Fixed case 72693: Prevent zombies from accumulating during backups. </li> <li> Fixed case 72705: Detect Tomcat 7 when modifying an account. </li> <li> Fixed case 72797: Fix quota reporting problem in cPanel. </li> <li> Fixed case 73185: Respect setting of /etc/rrdtooldisable. </li> <li> Fixed case 73209: Fix nested group usage in bracket notation. </li> <li> Fixed case 73269: Report DNS zone save errors during account creation. </li> <li> Fixed case 73325: Provide better errors and prevent faulty AppConfig registrations. </li> <li> Fixed case 73337: Only present a link if it is accessible through ACL check. </li> <li> [security] Fixed case 73349: Update Ruby to 1.8.7-p374 to address CVE-2013-4073. </li> <li> Fixed case 73365: Making ensure_includes not edit httpd.conf. </li> <li> Fixed case 73385: Prevent a single invalid ssl cert from breaking ssl_migration. </li> <li> Fixed case 73389: Change table option for MySQL engine specification to "ENGINE" instead of "TYPE". </li> <li> Fixed case 73457: Update Archive::Tar::Builder to the latest version. </li> <li> Fixed case 73521: Add missing Cpanel::SSLInfo to scripts/ssl_crt_status. </li> <li> Fixed case 73529: Avoid race condition in updateleechprotect. </li> <li> Fixed case 73661: Update nsd to 3.2.16-1.cp1136. </li> <li> Fixed case 73693: Fix another race condition in updateleechprotect. </li> <li> Fixed case 73817: Add the correct database name to look for roundcube. </li> <li> Fixed case 73857: Add line break to prevent concatenation of unrelated domain output messages. </li> <li> Fixed case 73869: Fix ssl_crt_status detection of domains without certs. </li> <li> Fixed case 73901: Fix pkgacct error handling problem. </li> <li> Fixed case 73977: Security Token Missing prevents login with HTTP Authentication. </li> <li> Fixed case 74049: Fix phpMyAdmin 4 database renames. </li> <li> Fixed case 74093: Detect CLONE_NEWPID success or failure using getppid. </li> <li> Fixed case 74109: Fix cPanel security token reuse in cpsrvd. </li> <li> Fixed case 74177: Gracefully handle when MySQL server is down in setupdbmap. </li> <li> Fixed case 74301: Deliver mail from cron normally under jailshell. </li> <li> Implemented case 71285: Update phpMyAdmin to version 4.0.4. </li> <li> Implemented case 73877: Run pre-build tests with failures visible. </li> <li> Implemented case 73897: Remove migrate-attracta. </li></ul><p> </p></div>
</div>����content��2013-08-06, 22:00 (UTC)����updated��Change Log for 11.38.2.0����title�������
production��11.38����tags��������2013-07-23, 22:00 (UTC)��� published�����<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 73073: Prevent security token destruction on access to a login url. </li> <li> [security] Fixed case 73349: Update Ruby to 1.8.7-p374 to address CVE-2013-4073. </li></ul><p> </p></div>
</div>����content��2013-07-23, 22:00 (UTC)����updated��Change Log for 11.38.1.15����title�������
production��11.38����tags��������2013-07-18, 22:00 (UTC)��� published����˜<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 71121: Update squirrelmail login_auth plugin. </li> <li> [security] Fixed case 71573: DNSAdmin request check for zone owner. </li> <li> [security] Fixed case 71865: Verify that a reseller owns a domain being modified. </li> <li> [security] Fixed case 71869: Drop privileges before updating order status. </li> <li> [security] Fixed cases 71973,71573: Improve DNS Admin fix. </li> <li> [security] Fixed case 72153: DNSAdmin clean the zones from the query string. </li> <li> [security] Fixed case 72161: Do not update user's files as root when suspending an account. </li> <li> [security] Fixed case 72237: Restore ability to root to update any zones on the system. </li> <li> [security] Fixed case 72253: Do full zone owner lookup in dnsadmin. </li> <li> [security] Fixed case 72357: Limit certain dnsadmin actions to root. </li> <li> [security] Fixed case 72685: Keep system-owned domains in userdomains. </li> <li> [security] Fixed case 72725: Restore some required reseller dnsadmin access. </li> <li> [security] Fixed case 72821: Prohibit "system" as a username. </li></ul><p> </p></div>
</div>����content��2013-07-19, 02:00 (UTC)����updated��Change Log for 11.38.1.13����title�������
production��11.38����tags��������2013-07-18, 22:00 (UTC)��� published����Ý<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 71669: Failed logins destroy the session before the security token can be saved. </li> <li> Fixed case 71817: Fix information disclosure in cPanel's SSL::installed_hosts API call. </li> <li> Fixed case 71889: Properly display XFS quotas. </li> <li> Fixed case 72025: Allow customization of AppConfig alert priority. </li> <li> Fixed case 72129: Start stunnel when necessary as part of cpsrvd startup. </li> <li> Fixed case 72205: Make backup destination disabled email high priority. </li> <li> Fixed case 72681: Fix SSL Parser handling the text "key". </li> <li> Implemented case 71933: Allow LogMeIn.pm to provide a security token. </li></ul><p> </p></div>
</div>����content��2013-07-19, 02:00 (UTC)����updated��Change Log for 11.38.1.14����title�������
production��11.38����tags��������2013-06-28, 06:00 (UTC)��� published�è<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 71617: Improve roundcube sqlite fix for CentOS 5.x servers. </li> <li> Implemented case 71137: Improve usability of security tokens. </li></ul><p> </p></div>
</div>����content��2013-06-28, 06:00 (UTC)����updated��Change Log for 11.38.1.6����title�������
production��11.38����tags��������2013-06-27, 18:00 (UTC)��� published����´<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 69685: Disable jailshell procfs mounting on buggy kernels. </li> <li> Fixed case 70201: Normalize IP display in WHM. </li> <li> Fixed case 70401: Improve UI when checking backup destinations in WHM. </li> <li> Fixed case 70681: Make SSL's domain matching case-insensitive for ASCII domains. </li> <li> Fixed case 70949: Fix JS parsing of certs that happen to trip up asn1js. </li> <li> Fixed case 71049: Use correct Tweak Settings link for AppConfig settings. </li> <li> Fixed case 71405: Fix Roundcube upgrade when using SQLite. </li> <li> Implemented case 71229: Do not jail autoresponders. </li></ul><p> </p></div>
</div>����content��2013-06-27, 22:00 (UTC)����updated��Change Log for 11.38.1.5����title�������
production��11.38����tags��������2013-06-26, 22:00 (UTC)��� published�ó<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 71109: Write log archives as the user. </li> <li> [security] Fixed case 71193: Drop privileges before manipulating user directories. </li></ul><p> </p></div>
</div>����content��2013-06-26, 22:00 (UTC)����updated��Change Log for 11.38.0.19����title�������
production��11.38����tags��������2013-06-26, 22:00 (UTC)��� published�ó<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 71109: Write log archives as the user. </li> <li> [security] Fixed case 71193: Drop privileges before manipulating user directories. </li></ul><p> </p></div>
</div>����content��2013-06-26, 22:00 (UTC)����updated��Change Log for 11.38.1.4����title�������
production��11.38����tags��������2013-06-20, 02:00 (UTC)��� published����*<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 63502: Update dovecot to 1.2.17-3.cp1136. </li> <li> Fixed case 66349: Do not use wildcard character in apache ServerName directive. </li> <li> Fixed case 70197: Don't start stunnel unless required. </li> <li> Fixed case 70485: Fix timeout and memory issue when dumping a MySQL database. </li> <li> Fixed case 70581: Print an error when a suspended account cannot be backed up. </li> <li> Fixed case 70757: Enable Tomcat support after account transfers. </li> <li> Fixed case 70777: Corrected WHM backup front-end form validation for additional destinations. </li> <li> Fixed case 70781: Do not freeze application list into cpsrvd binary. </li> <li> Fixed case 70793: Improve WHM backup destination validation. </li></ul><p> </p></div>
</div>����content��2013-06-20, 06:00 (UTC)����updated��Change Log for 11.38.1.3����title�������
production��11.38����tags��������2013-06-18, 22:00 (UTC)��� published�����<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 60047: Preserve custom SPF records when creating addon domains. </li> <li> Fixed case 60703: Don't falsely alert the admin about root logins. </li> <li> Fixed case 63115: Preserve custom A records during transfer. </li> <li> Fixed case 63275: Fix a issue with API2 expanding % in template parsing. </li> <li> Fixed case 64526: Adjusted alignment of help text and supporting page elements. </li> <li> Fixed case 65177: Unescape TXT record when adding an entry with a space. </li> <li> Fixed case 65765: Pkgacct can use incremental backup from the improved backup system. </li> <li> Fixed case 65913: Fix for hiding breadcrumbs in config php & suexec popup. </li> <li> Fixed case 65977: Allow password change for mailing lists with bounces. </li> <li> Fixed case 66681: Remove unreachable code in Cpanel::SafetyBits. </li> <li> Fixed case 66849: Fix for adding users and databases with hyphens in PostgreSQL. </li> <li> Fixed case 66861: Fix recursive chowning as root. </li> <li> Fixed case 66889: Check webalizer binary and use main binary or english as default. </li> <li> Fixed case 66913: Do not display mysql and postgres root user in frontend. </li> <li> Fixed case 66997: Prevent known warnings in tests, do local data in tmp dir. </li> <li> Fixed case 67009: Update_homedir_data fails to update the homedir in the ssl userdata. </li> <li> Fixed case 67121: Properly update maximum number of cpsrvd connections. </li> <li> Fixed case 67165: Implement '--allow-override' option for bin/backup. </li> <li> Fixed case 67369: PwCache need to be purge when (un)suspending a reseller. </li> <li> Fixed case 67385: Fix CSS for filter in backup user selection. </li> <li> Fixed case 67405: Validate ip value in restorepkg. </li> <li> Fixed case 67421: Fix to copy multiple accounts when one fails using firefox. </li> <li> [security] Fixed case 67573: Use safe temp paths when installing ruby. </li> <li> Fixed case 67609: Increase test coverage of Cpanel::Mysql. </li> <li> Fixed case 67661: Always use certificate's domain when alwaysredirecttossl is set. </li> <li> Fixed case 67669: Improve log messages when updating backup configuration. </li> <li> Fixed case 67677: Periodic clear of orphened virtfs mounts. </li> <li> Fixed case 67721: T/Cpanel-CachedDataStore.t failing. </li> <li> Fixed case 67773: Error out when trying to transfer as a user with noshell. </li> <li> Fixed case 67777: Properly warn on bad credentials on transfer. </li> <li> Fixed case 67921: Avoid calling wrap binaries on loading phpMyAdmin. </li> <li> Fixed case 68041: Prevent creating SSL vhosts on different IPs from the non-SSL vhost. </li> <li> Fixed case 68181: DNS Cleanup Page is Blank in IE 10. </li> <li> Fixed case 68233: Fix pop config files group after restoring a backup. </li> <li> Fixed case 68409: Missing use strict test for exim.pl.local. </li> <li> Fixed case 68413: Improve logaholic update lock system. </li> <li> Fixed case 68641: Synchronize transfer scripts before copying them to a server. </li> <li> Fixed case 68697: PHP Pecl Installer lists installed extensions when POSIX not installed. </li> <li> Fixed case 68709: Catch transfer failures due to sudo being missing. </li> <li> Fixed case 68713: Make clean_temp_users.pl work again. </li> <li> Fixed case 68937: Allow BoxTrapper deliveries even if forwards are rejected. </li> <li> Fixed case 68985: Make return failure and success the same on remote and local invocation. </li> <li> Fixed case 69033: Fix IP Deny manager when newline is missing in .htaccess. </li> <li> Fixed case 69101: Update cpanm to fix perlinstaller failure. </li> <li> Fixed case 69109: Send correct HTTP headers with comet responses. </li> <li> Fixed case 69161: Enable JSON::XS::shrink for Perl >= 5.8. </li> <li> Fixed case 69185: MyDNS silently truncates DNS names to 64 characters. </li> <li> Fixed case 69237: Update pure-ftpd to the latest version. </li> <li> Fixed case 69241: Skip ipv6 addresses from ifconfig output. </li> <li> Fixed case 69253: Increase default cPanel maxmem and minimum value to 512 MB. </li> <li> Fixed case 69281: Fix localization of YUI Calendar in WHM Mail Delivery Reports. </li> <li> Fixed case 69469: Remove duplicate errors message from an API call. </li> <li> Fixed case 69605: Make Cpanel::CachedDataStore::store_ref race safe. </li> <li> Fixed case 69737: Update MySQL 5.5 to version 5.5.32-1.cp1136. </li> <li> Fixed case 69741: Added easy_apache_ui symlink to .gitignore. </li> <li> Fixed case 69845: Fix roundcube database convertion to SQLite. </li> <li> Fixed case 70061: Symlink, not hardlink, the python binary into place. </li> <li> Fixed case 70141: Ensure that the bandmin .htaccess file is in place. </li> <li> Fixed cases 70393,63178: Fix phpPgAdmin autologins with special characters. </li> <li> Fixed case 70405: Unregister_appconfig incorrectly matches displayname. </li> <li> Fixed case 70461: Tweak Settings text for appconfig is reversed. </li> <li> Fixed case 70509: _find_best_match_for_domain_on_certificate should prefer the hostname. </li> <li> Fixed case 70577: Add alternate password strength url to appconfig. </li> <li> Fixed case 70673: Add puttykey.cgi to appconfig. </li> <li> Fixed case 70701: Make user key actually optional in appconfig. </li> <li> Fixed case 70705: RPM installed munin needs to be registered with appconfig. </li> <li> Implemented case 64581: Add ability to get just the current file name via ExpVar. </li> <li> Implemented case 66565: Add a script to generate case summary for releases. </li> <li> Implemented case 68377: Add a warning when restoring an account from untrusted source. </li> <li> Implemented case 68589: Optional forced registration of apps in appconfig before WHM use. </li> <li> Implemented case 69533: Update Roundcube to 0.9.1. </li> <li> Implemented case 69657: Whostmgr::ACLS should enable ConfigObj acls that do not require a license. </li> <li> Implemented case 70329: Backup User Selection needs mass actions to enable/disable all. </li> <li> Implemented case 70497: SNI support for litespeed. </li></ul><p> </p></div>
</div>����content��2013-07-01, 18:00 (UTC)����updated��Change Log for 11.38.1.2����title�������
production��11.38����tags��������2013-06-17, 18:00 (UTC)��� published�����<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 69809: List only resellers with proper ACLs for locale editing. </li> <li> Fixed case 70317: Pass through environment variables from Exim. </li> <li> Fixed case 70389: Use configured timeout for uploading backups. </li> <li> Fixed case 70409: Mount virtfs bind mounts with MS_REC. </li> <li> Fixed case 70465: Fix jailshell static mount count. </li> <li> Fixed case 70477: Improve bin/quota fallback when no results available. </li></ul><p> </p></div>
</div>����content��2013-06-17, 18:00 (UTC)����updated��Change Log for 11.38.0.18����title�������
production��11.38����tags��������2013-06-12, 18:00 (UTC)��� published����´<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 69273: Fix broken radio button in FTP transport template. </li> <li> Fixed case 69397: Restore SSL vhosts for all account package restores, not just dedicated IPs. </li> <li> Fixed case 69433: Possibility to adjust the backup destination time out value in WHM. </li> <li> Fixed case 69797: Permit all actions for resellers with the all ACL. </li> <li> [security] Fixed case 69849: Don't pass custom transport password on the command line. </li> <li> Fixed case 70157: Shared IPs not shown if they have changed. </li> <li> Fixed case 70161: Ensure /usr/local/cpanel is mounted under jailshell. </li></ul><p> </p></div>
</div>����content��2013-06-12, 22:00 (UTC)����updated��Change Log for 11.38.0.17����title�������
production��11.38����tags��������2013-06-10, 18:00 (UTC)��� published����¯<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> [security] Fixed case 68189: Improve file uploading in Web Template Editor. </li> <li> [security] Fixed case 68213: Address two XSS vulnerabilities. </li> <li> [security] Fixed case 68433: Fix XSS vulnerabilities in entropychat. </li> <li> [security] Fixed case 68645: Sanitize MySQL usernames in SQL statements. </li> <li> [security] Fixed case 68733: Sanitize theme supplied to brandingimage.cgi. </li> <li> [security] Fixed case 68965: Add missing ACL checks to WHM CGIs. </li> <li> Fixed case 69093: Don't warn about inability to back up when backups disabled. </li> <li> [security] Fixed case 69329: Add a warning when restoring an account from untrusted source. </li> <li> [security] Fixed case 69401: Improve reseller ACL check when running langadmin. </li> <li> [tests] Fixed case 69277: Remove internal setting when loading a backup destination. </li></ul><p> </p></div>
</div>����content��2013-06-10, 22:00 (UTC)����updated��Change Log for 11.38.0.15����title�������
production��11.38����tags��������2013-06-10, 18:00 (UTC)��� published�¬<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 69665: Cpanel::AdminBin::Server should permit numbers in function names. </li></ul><p> </p></div>
</div>����content��2013-06-10, 18:00 (UTC)����updated��Change Log for 11.38.0.16����title�������
production��11.38����tags��������2013-05-24, 22:00 (UTC)��� published����8<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 68329: Restore functionality to hook system. </li> <li> Fixed case 68993: Report each device only once when checking quota. </li> <li> Fixed case 69009: Preserve backup invalid destination password during backup. </li></ul><p> </p></div>
</div>����content��2013-05-24, 22:00 (UTC)����updated��Change Log for 11.38.0.13����title�������
production��11.38����tags��������2013-05-23, 22:00 (UTC)��� published����×<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 68565: Fixed a linked array reference in <strong><em>ipmap</em></strong>. </li> <li> Fixed case 68717: Prevent duplication of cabundles returned by fetchSSLFiles. </li> <li> Fixed case 68849: Count quota usage once per drive. </li> <li> Fixed case 68881: Fix error message with custom backup transports. </li> <li> Fixed case 68917: Improve exception handling in backups. </li></ul><p> </p></div>
</div>����content��2013-05-23, 22:00 (UTC)����updated��Change Log for 11.38.0.12����title�������
production��11.38����tags��������2013-05-23, 02:00 (UTC)��� published����ñ<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 62947: Restore mysqltuner.pl to shipped files. </li> <li> Fixed case 65429: Support JSPs under Apache 2.4. </li> <li> Fixed case 68081: Jailshell needs to not re-jail when inside the jail. </li> <li> Fixed case 68117: Prevent PHP eio or dio extensions from used if Apache mod_ruid2.so is installed. </li> <li> Fixed case 68137: Touch /etc/group so jailshell is updated. </li> <li> Fixed case 68229: Restore backup exclude rules to be relative to the user home directory. </li> <li> Fixed case 68321: Detect whether any Tomcat (5.5 or 7) installed. </li> <li> Fixed case 68401: From header rewrites fail if the From header is missing. </li> <li> Fixed case 68437: SSL cert data is not always written with the correct permissions. </li> <li> Fixed case 68457: Deliver domains outside of the jail via SMTP to localhost. </li> <li> Fixed case 68629: Fix out of memory error when downloading backups. </li> <li> Fixed case 68677: Do not try to set up a virtfs mount if the mount point is a symlink. </li> <li> Fixed case 68821: Fix failures resulting from incomplete virtfs changes. </li> <li> Implemented case 68025: Warn users before they create an SSL wildcard vhost. </li></ul><p> </p></div>
</div>����content��2013-05-23, 02:00 (UTC)����updated��Change Log for 11.38.0.10����title�������
production��11.38����tags��������2013-05-21, 02:00 (UTC)��� published����Â<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 66309: Remove apache* from yum excludes. </li> <li> Fixed case 67469: Fix Apache 2.4 <em>wildcard</em> userdata problem. </li> <li> Fixed case 67557: Fix error when transferring from foreign control panel. </li> <li> Fixed case 67673: Dnsadmin-ssl fails to load JSON::XS. </li> <li> Fixed case 67753: Restore ability to specify From name in autoresponders. </li> <li> Fixed case 67801: Mailtrap is missing from the required jailshell groups. </li> <li> Fixed case 67805: Ensure that /etc/eximmailtrap is copied for jailshell. </li> <li> [security] Fixed case 67945: Update MySQL 5.1 to 5.1.69-1.cp1136. </li> <li> Fixed case 67985: Extend timeout for cpbackup_transporter tasks. </li> <li> Fixed case 68037: Fix quota checking delays from too many virtfs mounts. </li> <li> Implemented case 68225: Improve the quota script to use the quota command as a fallback. </li></ul><p> </p></div>
</div>����content��2013-05-21, 02:00 (UTC)����updated��Change Log for 11.38.0.8����title�������
production��11.38����tags��������2013-05-10, 06:00 (UTC)��� published����Æ<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 65181: Allow changing MySQL passwords. </li> <li> Fixed case 67425: Virtuozzo clone flag failure (type 4). </li> <li> Fixed case 67429: Revert chkservd changes to make sshd check connections. </li> <li> Fixed case 67449: Cpanel::Redirect fails redirect to the proper place. </li> <li> Fixed case 67477: Virtfs setup expected /etc/group to be shadowed. </li> <li> Fixed case 67501: Preserve custom cron jobs when enabling new backup system. </li> <li> Fixed case 67505: Jailshell to check for linux < 2.6.25 and skip read only mount attempt. </li> <li> Fixed case 67533: Ensure checkallsslcerts runs nightly. </li></ul><p> </p></div>
</div>����content��2013-05-10, 06:00 (UTC)����updated��Change Log for 11.38.0.7����title�������
production��11.38����tags��������2013-05-09, 02:00 (UTC)��� published�����<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 64584: Use nfreeze instead of freeze in backup_restore_manager. </li> <li> Fixed case 64849: Make backup error log contain newlines. </li> <li> Fixed case 66741: Fix DNSOnly installation with 11.38. </li> <li> Fixed case 67345: Inform admin of possible cause of chkservd failures. </li> <li> Fixed case 67361: Jailshell not working in virtuozzo (type 3). </li> <li> Fixed case 67373: Be clear about the source of the SSH port for chkservd. </li></ul><p> </p></div>
</div>����content��2013-05-09, 02:00 (UTC)����updated��Change Log for 11.38.0.6����title�������
production��11.38����tags��������2013-05-07, 22:00 (UTC)��� published����ä<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 65629: Remove unneeded check for changemx in read-only mxadmin operations. </li> <li> Fixed case 66629: Run linktest-df when running nativedf-install. </li> <li> Fixed case 66665: Improve backup notifications when a backup fails. </li> <li> Fixed case 66709: Don't unnecessarily log mirror IP addresses. </li> <li> Fixed case 67005: Add missing dependency that prevented setsiteip from working. </li> <li> Fixed case 67045: Updated Apache 2.4 directives to include cobra fix. </li> <li> [security] Fixed case 67065: Prevent ssh keys from being overwritten by whm resellers. </li> <li> Fixed case 67089: Send only one email on a successful backup. </li> <li> Fixed case 67105: Changing users shell in WHM fails properly update crontab. </li> <li> Fixed case 67129: CLONE_NEWPID fails under CentOS 6 xenpv. </li> <li> Fixed case 67245: Prevent locale.js from throwing an exception on [output,apos]. </li></ul><p> </p></div>
</div>����content��2013-05-14, 06:00 (UTC)����updated��Change Log for 11.38.0.5����title�������
production��11.38����tags��������2013-05-03, 22:00 (UTC)��� published����-<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 64536: Fixed quirky behavior of calendar after adding user to queue. </li> <li> Fixed case 64566: Don't allow backup config with nowhere to back up. </li> <li> [security] Fixed case 64649: Fix email selection when adding an auto responder from webmail. </li> <li> Fixed case 65333: Add target data to XLIFF output. </li> <li> Fixed case 65405: Change makevar glob from star to ampersand due to binary issues. </li> <li> Fixed case 65493: Don't destroy files edited in File Manager when over quota. </li> <li> Fixed case 65693: Update output,url in Cpanel::CPAN to match the one on CPAN. </li> <li> Fixed case 65833: Fix generation of metadata for Courier certificates. </li> <li> Fixed case 66045: Ensure failed files are preserved correctly. </li> <li> Fixed case 66093: Don't destroy branding when user is over quota. </li> <li> Fixed case 66597: Avoid leaving some temporary files when a user is over quota. </li> <li> Fixed case 66605: Ensure that /proc is mounted when it should be. </li> <li> Fixed case 66645: SSLUseStapling should not be enabled if openssl < 0.9.8g. </li> <li> Fixed case 66649: Give more information on current upcp process. </li> <li> Fixed case 66661: Convert some backup messages to logger calls. </li> <li> Fixed case 66761: Ensure that SiteIP.pm::set() abort()s the httpd.conf meta-transaction on fail. </li> <li> Fixed case 66773: Fix auto responders in a jailshell on CentOS 6. </li> <li> Fixed case 66805: Bump major version to 11.38. </li> <li> Fixed case 66813: Different versions of virtuozzo have different clone breakage. </li> <li> Implemented case 63738: Add accesshash information to cPanel access log. </li> <li> Implemented case 66429: Always report which mirror is used on an http request. </li></ul><p> </p></div>
</div>����content��2013-05-04, 02:00 (UTC)����updated��Change Log for 11.38.0.1����title�������
production��11.38����tags��������2013-04-27, 02:00 (UTC)��� published����><div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 64525: Added help text to local DNS option. </li> <li> Fixed case 65425: Build mailman properly if /usr/local/cpanel/3rdparty/mailman is missing. </li> <li> Fixed case 65645: Only update pg_hba.conf one time with security rules. </li> <li> Fixed case 65761: Handle relative symlinks properly in writefile. </li> <li> Fixed case 65945: Loosen permissions when generating .ftpquota. </li> <li> Fixed case 66053: Fix WHM Restore a Full Backup/cpmove File error page. </li> <li> Fixed case 66057: Rebuild userdomains after updating bandwidth limit. </li> <li> Fixed case 66069: Make check_cpanel_rpms exit nonzero on error. </li> <li> Fixed case 66089: Avoid recompiling Net::SSLeay and Filesys::Df when not required. </li> <li> Fixed case 66113: Whitespace breaking from SSL project prevents search and copy. </li> <li> Fixed case 66129: Speed up cpanellogd when new backup system enabled. </li> <li> Fixed case 66181: Fix account transfer problem with errors from .bashrc. </li> <li> Fixed case 66197: Make legacy API1/2 SSL installs determine domain implicitly from the cert. </li> <li> Fixed case 66489: LIVEAPI cannot handle file uploads for php. </li> <li> Fixed case 66545: Jailexec cannot write to /var/log on centos 6 breaking autoresponders. </li> <li> Fixed case 66553: Fix "barber pole" on certain pages due to styling issue. </li> <li> Fixed case 66593: Skip CLONE_NEWNS CLONE_NEWIPC on virtuozzo for jailshell. </li> <li> Implemented case 63996: Install Perl and PECL ImageMagick modules. </li></ul><p> </p></div>
</div>����content��2013-04-27, 06:00 (UTC)����updated��Change Log for 11.37.0.7����title�������
production��11.37����tags��������2013-04-24, 22:00 (UTC)��� published���,…<div xmlns="http://www.w3.org/1999/xhtml"><div><ul> <li> Fixed case 61581: Remove ancient version of Interchange. </li> <li> Fixed case 61599: Make build_transfers keep last head rev locally. </li> <li> Fixed case 62884: Update rpm.versions to look for 11.36 RPMs. </li> <li> Fixed case 62905: Remove unused subroutines from Cpanel::DIp. </li> <li> Fixed case 63058: Ensure $tarball->read() modifies 2nd argument. </li> <li> Fixed case 63494: Bypass processing empty filters to avoid LRU cache reset in exim. </li> <li> Fixed case 63584: Improve error handling for cpanelsync. </li> <li> Fixed case 63659: WHM Privs page is missing a closing a tag causing all the privs to be links. </li> <li> Fixed case 63660: Fix "Error Code" message when installing RPMs. </li> <li> Fixed case 63682: Fix mainacct_central_user_filter when no filter is present. </li> <li> Fixed case 63771: Always enable security tokens. </li> <li> [security] Fixed case 63915: Verify correct reads/writes to user SSLStorage. </li> <li> Fixed case 63965: Address additional lower risk security concerns for ssl project. </li> <li> Fixed case 64061: Fixed t/Cpanel-Backup-Config.t. </li> <li> Fixed case 64067: UAPI though JSON::XS fails without convert_blessed being enabled. </li> <li> Fixed case 64125: Fix sandbox url_templates to point to 11.36. </li> <li> Fixed case 64134: Do not load bashrc when copying an account from a server. </li> <li> Fixed case 64172: Exim header rewrites should ignore Mailer-Daemon messages. </li> <li> Fixed case 64174: Restore upgrade_in_progress.txt to its original location. </li> <li> Fixed case 64196: Revert Optimization to Cpanel::NSCD and add tests. </li> <li> Fixed case 64204: Fix backup_restore_manager smoker failure. </li> <li> Fixed case 64227: Fix errors on backups page in cPanel. </li> <li> Fixed case 64239: Update JSON::XS to 2.33_06 with utf8 fixes. </li> <li> Fixed case 64241: Add missing json::xs build-tools update files for 2.33_06. </li> <li> Fixed case 64247: Reverse symlinks and move adminbins. </li> <li> Fixed case 64276: LegacyBackups taskrun script tries to load compiled-only module. </li> <li> Fixed case 64293: Jail commands run from exim pipes for jail/noshell users. </li> <li> Fixed case 64334: Fix email autoresponders to use email user in from header. </li> <li> Fixed case 64368: Branding does not warn when it cannot access its files. </li> <li> [security] Fixed case 64382: Prevent apache jails from being enabled if mod_ruid2 is not at least 0.9.4a. </li> <li> [security] Fixed case 64400: Cpanel::Cron api commands allow injecting arbitrary content. </li> <li> Fixed case 64460: Remove Cpanel::AdminBin::Server from distribution. </li> <li> Fixed case 64478: Fix validate all with no destiantions. </li> <li> Fixed case 64495: AdminBin Server needs to send nonrefs as plaintext to adminbins. </li> <li> Fixed case 64501: Smoker failure in Cpanel::Chkservd::Tiny. </li> <li> Fixed case 64503: Smoker failure t/Whostmgr-Accounts.t due to locks. </li> <li> Fixed case 64504: Fix smoker failure t/whostmgr-bin-xml-api.pl_autocheck-all-commands.t. </li> <li> Fixed case 64522: Remove tautology. </li> <li> Fixed case 64528: Added helptext to custom template and cleaned up other destinations. </li> <li> Fixed case 64532: Clarify meaning of section header. </li> <li> Fixed case 64534: Update instructions for new interface names. </li> <li> Fixed case 64535: Fix for destination save bug in webkit based browsers. </li> <li> Fixed case 64549: sshd is not checked to see if it is responding. </li> <li> Fixed case 64552: Install sets wrong permissions on bin/cpwrap, bin/jailexec. </li> <li> Fixed case 64560: Fix portsadmin output formatting. </li> <li> Fixed case 64570: Fix get_data_from_form() in ajaxapp.js from SSL phase 3 merge. </li> <li> Fixed case 64571: Fix t/Whostmgr-API-1-Httpd.t. </li> <li> Fixed case 64583: Don't kill off cpsrvd on upgrade to 11.38. </li> <li> Fixed case 64592: Optimized the loop that compares the bad passwords. </li> <li> [security] Fixed case 64601: Make backup code use SafeStorable. </li> <li> Fixed case 64606: Create /var/cpanel/conf/apache if it doesn't exist. </li> <li> Fixed case 64623: Add charset to content type header for json requests. </li> <li> Fixed case 64633: Live API system does not show which file contains the error on failure. </li> <li> Fixed case 64637: AdminBin::Server should provide a better error on missing adminbin. </li> <li> Fixed case 64641: Cpanel::AdminBin refactoring does not pass back errors properly. </li> <li> Fixed case 64665: Each update to $apacheconf_data in ApacheConf.pm should update the mtime. </li> <li> Fixed case 64669: Ensure that update_vhost() always calls close() explicitly. </li> <li> Fixed case 64721: Cpanel::SimpleSync::CORE needs to be compiled into setupvirtfs. </li> <li> Fixed case 64725: UAPI / API3 support for LIVEAPI. </li> <li> [security] Fixed case 64729: Don't allow remote execution of internal API 1 calls. </li> <li> Fixed case 64837: Fixed destiantion mask handling on backup type incremental. </li> <li> Fixed case 64861: Updated error checking on SFTP destination connections to catch errors on STDERR. </li> <li> Fixed case 64893: Fixed typo in SFTP module for backups. </li> <li> Fixed case 64933: Update MySQL 5.1 to 5.1.36-3cp1136. </li> <li> Fixed case 64941: Update phpMyAdmin to 3.5.8. </li> <li> Fixed case 64997: Always show correct FTP port in client configuration. </li> <li> Fixed case 65041: Added logic to remove temporary directories after restoration is complete. </li> <li> Fixed case 65053: Bring the regexp that the backend uses to validate SSL keys and certs to JS. </li> <li> Fixed case 65069: Fix chkservd check for ftpd when using a custom port. </li> <li> Fixed case 65133: Update MySQL 5.5 to 5.5.30-4.cp1136. </li> <li> Fixed case 65161: Fix WHM Limit Bandwidth Usage value validation. </li> <li> Fixed case 65169: Fix broken filter interface in webmail. </li> <li> Fixed case 65173: Fix broken deregister function in cphulkd. </li> <li> Fixed case 65205: Make new SSL vhosts use the same CGI privileges as in the cpuser file. </li> <li> Fixed case 65249: Fix to restore DNS zone when autodiscover subdomains is disabled. </li> <li> Fixed case 65305: Use a file ext and format flag for locale copy to match copy logic. </li> <li> Fixed case 65325: Fix regexp for matching an Apache vhost with a given port. Add tests. </li> <li> Fixed case 65337: Fix saving in Edit Locale live mode. </li> <li> Fixed case 65369: Fix logaholic AdminBin calls. </li> <li> Fixed case 65373: Make sure open_files_limit is placed appropriately. </li> <li> Fixed case 65385: Make Cpanel::AdminBin::Serializer use shrink to roundtrip by downgrading utf8. </li> <li> Fixed case 65389: Update PHP to 5.3.17-5.cp1136 with MySQLi support. </li> <li> Fixed case 65401: Fix addpop and delpop. </li> <li> Fixed case 65409: Fix breakages in CJT ajaxapp.js error notices. </li> <li> Fixed case 65413: Fix image in Mail Troubleshooter for BoxTrapper. </li> <li> Fixed case 65437: Prevent assigning a single non-shared IP to multiple accounts. </li> <li> Fixed case 65465: Make API2 and API1 SSL installs interact correctly with other API2 & API1 calls. </li> <li> Fixed case 65481: Restore validate.js to attaching to form submit button "click" events. </li> <li> Fixed case 65497: Update to cPanel exim 4.80.1-1. </li> <li> Fixed case 65509: Add autofixer for Pure-FTPd Bind problem. </li> <li> Fixed case 65637: Check existing ssh keys when generating a new key from backup configuration. </li> <li> Fixed case 65653: Don't exclude metadata from user backups. </li> <li> Fixed case 65677: Run rpmup on DNSONLY. </li> <li> Fixed case 65761: Handle relative symlinks properly in writefile. </li> <li> Fixed case 65789: Honor the --skiphomedir flag when packaging an account. </li> <li> Fixed case 65801: Fix error handling on Restore A Full Backup or cpmove Archive. </li> <li> Fixed case 65809: Restore cpanellogd pid file. </li> <li> Fixed case 65817: Do not reset apache include configuration when a local error is detected. </li> <li> Fixed case 65821: Pkgacct fails on 11.38 if user is over quota. </li> <li> Fixed case 65857: Fix copy about CGI privs and upgrading accounts. </li> <li> Fixed case 65865: Fix legacy backup system with accounts created before 11.38. </li> <li> Fixed case 65889: Fix empty sorting preferences in Horde. </li> <li> Fixed case 66025: Fix jailshell with /dev/null read only permission. </li> <li> Fixed case 66041: Fixed a misspelling. </li> <li> Fixed case 66065: Added read-only class to retention fields when incremental is set. </li> <li> Fixed case 66133: Fix LegacyBackups install task. </li> <li> Implemented case 41691: Add crond to the service manager. </li> <li> Implemented case 57803: Integrate Archive::Tar::Builder, pigz into pkgacct. </li> <li> Implemented case 61132: Use Cpanel::Logger for cphulkd. </li> <li> Implemented case 63126: Remove dependency loop from Cpanel::Locale::Utils::MkDB. </li> <li> Implemented case 63384: Add an option to rewrite the From: header to the actual sender. </li> <li> Implemented case 63491: SSL Project Phase One. </li> <li> Implemented case 63643: SSL Project Phase Two. </li> <li> Implemented case 63907: Convert Cpanel::JSON backend to JSON::XS. </li> <li> Implemented case 63912: Convert Cpanel::AdminBin and AdminBins to use Cpanel::AdminBin::Serializer. </li> <li> Implemented case 63941: Add initial locale_tool project changes. </li> <li> Implemented case 64019: Improvements to WHM Backups; an Angry Llama production. </li> <li> Implemented case 64156: Sort etc/cpanel.config. </li> <li> Implemented case 64171: Make the adminbin system pluggable and eliminate cpwrap. </li> <li> Implemented case 64177: Apache Jails. </li> <li> Implemented case 64194: Remove legacy apache templates. </li> <li> Implemented case 64197: Jail Shell Update. </li> <li> Implemented case 64242: Change jailshell to use clone to provide a limited /proc. </li> <li> Implemented case 64294: Force cron to use jailshell when the users shell is jailshell or noshell. </li> <li> Implemented case 64310: Make setupvirtfs compiled to decrease jailshell login time. </li> <li> Implemented case 64388: Update cplint to 0.059-1.cp1136. </li> <li> Implemented case 64401: Update minimum required version of Text::Extract::MaketextCallPhrases. </li> <li> Implemented case 64432: SSL Project Phase Three. </li> <li> Implemented case 64445: New installs get MySQL 5.5. </li> <li> Implemented case 64455: Add tweaks for setting the autodiscovery host and prefered mail service. </li> <li> Implemented case 64591: Updated de/authorize autofixers for multi server support. </li> <li> Implemented case 64605: SSL project phase 3 changes to maketext() strings from documentation review. </li> <li> Implemented case 64733: Add a tool for showing all available UAPI calls and args for docs. </li> <li> Implemented case 65589: Support cagefs_enter for exim pipes. </li> <li> Implemented case 65745: Log summary of updates for historical purposes. </li> <li> [tests] Fixed case 62978: Convert scripts/installpostgres as a modulino. </li> <li> [tests] Fixed case 64436: Improve error handling in cpwrap. </li> <li> [tests] Fixed case 64557: Remove warnings from Cpanel::SysQuota. </li> <li> [tests] Fixed case 64953: Make AdminBin error reporting more consistent. </li></ul></div>
</div>����content��2013-04-25, 02:00 (UTC)����updated��Change Log for 11.37.0.5����title�������
production��11.37����tags����entries
<http://docs.cpanel.net/changelog/cpanel-changelog-11.38.atom����self� Ken Power����author�
Version 11.38����subtitle
11.38.2.23����version_
6http://docs.cpanel.net/changelog/cpanel-changelog.atom��� all_link_��cPanel & WHM Change Log Feed����title��2014-07-18, 14:00 (UTC)����updated