{"id":6482,"date":"2018-08-30T16:08:16","date_gmt":"2018-08-30T12:08:16","guid":{"rendered":"http:\/\/news.cpanel.com\/?p=55161"},"modified":"2018-08-30T16:08:16","modified_gmt":"2018-08-30T12:08:16","slug":"easyapache-2018-08-29-security-release","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/easyapache-2018-08-29-security-release\/","title":{"rendered":"EasyApache 2018-08-29 Security Release"},"content":{"rendered":"
\"\"<\/div>\n

SUMMARY<\/strong><\/span>
cPanel, Inc. has updated RPMs for EasyApache 4 with OpenSSL version 1.0.2p on August 29, 2018. This release addresses security vulnerabilities related to CVE-2018-0732 and CVE-2018-0737. We strongly encourage all OpenSSL users to update their version of OpenSSL.<\/p>\n

AFFECTED VERSIONS<\/strong><\/span>
All versions of OpenSSL through 1.0.2o<\/p>\n

SECURITY RATING<\/u><\/strong><\/p>\n

CVE-2018-0732 \u2013 MEDIUM
Fixed bug key agreement related to CVE-2018-0732<\/p>\n

CVE-2018-0737 \u2013 MEDIUM
Fixed vulnerability in RSA Key generation algorithm related to CVE-2018-0737<\/p>\n

SOLUTION<\/strong><\/span>
cPanel, Inc. has released updated RPMs for EasyApache 4 on August 29, 2018 with OpenSSL version 1.0.2p. Unless you have enabled automatic RPM updates in your cron, update your system with either yum update or WHM\u2019s Run System Update interface.<\/p>\n

REFERENCES<\/strong><\/span>
https:\/\/www.openssl.org\/news\/vulnerabilities-1.0.2.html<\/a>
https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2018-0732<\/a>
https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2018-0737<\/a><\/p>\n

For the PGP-signed message, please see EA4 2018-8-29.signed<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

SUMMARYcPanel, Inc. has updated RPMs for EasyApache 4 with OpenSSL version 1.0.2p on August 29, 2018. This release addresses security vulnerabilities related to CVE-2018-0732 and CVE-2018-0737. We strongly encourage all OpenSSL users to update their version of OpenSSL. AFFECTED VERSIONSAll versions of OpenSSL through 1.0.2o SECURITY RATING CVE-2018-0732 \u2013 MEDIUMFixed bug key agreement related to …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[25],"tags":[],"class_list":["post-6482","post","type-post","status-publish","format-standard","hentry","category-cpanel-news"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/6482","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=6482"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/6482\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=6482"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=6482"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=6482"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}