SECURE YOUR HOSTING FUTURE
Transition from CentOS 7 with CloudLinux
SECURE YOUR HOSTING FUTURE
SECURE YOUR HOSTING FUTURE
A new updated cldeploy script version v1.102 is now available for download from the CloudLinux repository https://repo.cloudlinux.com/cloudlinux/sources/cln/cldeploy.
A newly discovered critical WebP 0-day security vulnerability, identified as CVE-2023-4863, CloudLinux OS team We are actively addressing and mitigating the security issue within our software.
To summarize the impact on different CloudLinux versions:
We would like to inform you that the rollout of the slot 'cloudlinux-8' featuring 'AccelerateWP with custom panel integration' has been temporarily paused due to identified bugs. Our team is diligently working to address these issues and ensure a smooth experience for all users.
The decision to pause the rollout was made to ensure the stability and functionality of the update. We have identified the following critical issues that prompted the pause:
CVE-2023-20593 (Cross-Process Information Leak on AMD Zenbleed systems) was published in the official security bulletin on July 25th, 2023. Please read this security blog to learn more about this vulnerability.
Table of content:
2. Mitigation guide for CloudLinux OS
3. Updates as of August 3, 2023 - clarification on OS versions required for mitigation
4. Updates as of August 11, 2023 - update command for CloudLinux OS 7 hybrid added
The 4th slot is paused because of the changes in LVE for cl-MySQL/cl-MariaDB, which were performed as a MYSQL-899. Sometimes, these changes can lead to increased LA and CPU usage.
A new updated cldeploy script version v1.97 is now available for download from the CloudLinux repository https://repo.cloudlinux.com/cloudlinux/sources/cln/cldeploy.
The lve-utils-6.4.10-1 package with the fix for the latest issue was released to the rollout slot-1. The slot was resumed.
The gradual rollout of the rollout slot-1 for the lve-utils-6.4.9-2, lve-wrappers-0.7.9-1, cl-end-server-tools-1.1.13-1, and lvemanager-xray-0.15-1 packages was paused due to a minor bug in getting email messages from cron:
We are pleased to announce that the new updated WHMCS plugin version 1.3.11 is now available. This latest version embodies further improvements of the product as well as the new features.
prev
