Page tree
Skip to end of metadata
Go to start of metadata

A version's change log includes entries for both the development and production releases of that version.

For example, changes in cPanel & WHM version 11.39 appear in the change log for version 11.40. This is because 11.39 is the development version whose changes are released in the production version 11.40. For more information, read our cPanel & WHM Product Versions and the Release Process documentation.

RSS Link

 

11.42.1.31


2015-01-20

  • Fixed case 156285: Fix error in jailshell detection of sftp connections.

11.42.1.30


2015-01-19

  • [security] Fixed SEC-1: Arbitrary code could be executed as other accounts with RUID2/ITK enabled.
  • [security] Fixed SEC-4: Noshell restriction bypass via SFTP connections.
  • [security] Fixed SEC-8: Stored XSS vulnerability in cPDAVd directory index functionality.

11.42.1.29


2014-11-17

  • [security] Fixed case 114917: Resellers could delete feature lists they did not own.
  • [security] Fixed case 115493: Multiple Self-XSS vulnerabilities due to Template Toolkit setlist filtering.
  • [security] Fixed case 115757: Self-XSS Vulnerability in Bandwidth Daily Report.
  • [security] Fixed case 115833: Arbitrary code execution as root via chroothttpd.
  • [security] Fixed case 117153: Self-XSS vulnerability in WHM theme cloning interface.
  • [security] Fixed case 118105: Anti-XSRF tokens disclosed during session based logins.
  • [security] Fixed case 118121: Self XSS Vulnerability in cPanel Subdomains List.
  • [security] Fixed case 127225: Arbitrary file chown via backupadmin userbackup.
  • [security] Fixed case 132617: Self XSS Vulnerability in Generate an SSL Certificate and Signing Request.
  • [security] Fixed case 132657: Stored XSS Vulnerability in WHM Add or Remove Recognized IP Addresses.
  • [security] Fixed case 132769: Arbitrary file read via ExampleModule_printfile API1 command.

11.42.1.28


2014-11-11

  • Fixed case 129341: Fix yum RPM installation in non-English locales.

11.42.1.27


2014-10-27

  • Fixed case 109537: Remove the blocker and allow MySQL 5.0 and 5.1 to proceed to 11.44.
  • Fixed case 109709: Safely shutdown MySQL by every means possible.
  • Fixed case 109717: MySQL upgrade can fail with an error indicating cannot connect.
  • Fixed case 109729: Add a warning message to MySQL Upgrade UI to update cPanel/WHM first.
  • Fixed case 110529: Fixed maketext inconsistencies.
  • Fixed case 110565: Prevent warning message when restarting MySQL.
  • Fixed case 110797: Adjusted version in MySQL Update warning.
  • [security] Fixed case 124993: Add an interface to modify SSL/TLS versions for cpsrvd and cpdavd.
  • [security] Fixed case 124993: Deduplicate cpsrvd and cpdavd SSL configuration.
  • Fixed case 125317: Add an option to configure SSL/TLS protocols for Exim.
  • Fixed case 125369: Fix Courier SSL protocol selection options.
  • Fixed case 126225: Add SSL protocol configuration for Dovecot.
  • Implemented case 107637: Update to the latest ConfigFiles.pm.
  • Implemented case 109769: Sync MySQL upgrade warning message for 11.42 to match documentation.
  • Implemented case 125289: Update Apache configuration to allow specifying SSL protocols.

11.42.1.26


2014-09-08

  • [security] Fixed case 109009: Stored XSS Vulnerability in WHM Cluster Trust Settings.
  • [security] Fixed case 109029: Self-Stored XSS vulnerability in WHM basic_exim_editor interface.
  • [security] Fixed case 109037: Self-Stored XSS vulnerability in spamdconf.
  • [security] Fixed case 109045: Stored XSS Vulnerability in WHM Server Status.
  • [security] Fixed case 109049: Arbitrary file overwrite in /scripts/synccpaddonswithsqlhost.
  • [security] Fixed case 109469: Bypass of email and webdav access during account suspension.
  • [security] Fixed case 109789: Bypass of account suspension lock via account rename.
  • [security] Fixed case 109797: Bypass of locks for account unsuspension in scripts/remote_unsuspend.
  • [security] Fixed case 110177: Stored-XSS vulnerability in WHM List Accounts Interface.
  • [security] Fixed case 112041: Arbitrary file overwrite in checkstunnel script.
  • [security] Fixed case 112361: Arbitrary file overwrite via Tailwatch cPBandwd driver.
  • [security] Fixed case 113101: Arbitrary code execution as shared webmail accounts.
  • [security] Fixed case 113477: Arbitrary code execution as cpanel-horde user via cache file poisoning.

11.42.1.25


2014-08-04

  • [security] Fixed case 108965: Bypass of account suspension via mod_userdir.

11.42.1.24


2014-07-22

  • [security] Fixed case 105465: Update Exim to 4.82-4.cp1136 for CVE-2014-2972.

11.42.1.23


2014-07-21

  • [security] Fixed case 93321: Limited arbitrary file modification via LeechProtect subsystem.
  • [security] Fixed case 98125: Process locking based on 'ps' vulnerable to attack by local users.
  • [security] Fixed case 98253: Insecure permissions on eximstats SQL password file.
  • [security] Fixed case 99353: Self-stored XSS vulnerability in WHM SSH key management interface.
  • [security] Fixed case 99637: Stored XSS vulnerability in WHM listaccts interface.
  • [security] Fixed case 99749: Bypass of account ownership restrictions during account creation.
  • [security] Fixed case 99861: Update analysis logs sent without proper SSL certificate validation.
  • [security] Fixed case 100669: Self-Stored XSS Vulnerability in WHM Manage Custom RBLs.
  • [security] Fixed case 100677: Arbitrary file unlink via fixwebalizer script.
  • [security] Fixed case 100685: Stored XSS Vulnerability in WHM Email All Users.
  • [security] Fixed case 100957: Arbitrary YAML file read via import_old_support_cfg script.
  • [security] Fixed case 101013: Self-stored XSS Vulnerability in WHM Disk Usage.
  • [security] Fixed case 102105: Bypass of account suspension via mail filters.
  • [security] Fixed case 102401: Limited SQL injection vulnerability in LeechProtect.
  • [security] Fixed case 102853: Self XSS Vulnerability in WHM EasyApache Launcher.
  • [security] Fixed case 102877: Self XSS Vulnerability in WHM Legacy Language File Upload.
  • [security] Fixed case 103341: Arbitrary code execution via Mailman pickle files.
  • [security] Fixed case 104101: Self-stored XSS vulnerability in view_cert.tt.
  • [security] Fixed case 104105: Self-stored XSS vulnerability in view_key.tt.
  • [security] Fixed case 105273: Self-stored XSS vulnerability in view_csr.tt.
  • [security] Fixed case 105345: Arbitrary file read via Exim virtual aliases.
  • [security] Fixed case 105469: Bypass of commondomains and hostname restrictions in WHM Add DNS interface.

11.42.1.22


2014-07-16

  • Fixed case 107105: Initial install of cPanel w/ Apache MPM ITK properly sets up suEXEC.

11.42.1.21


2014-06-24

  • Fixed case 73533: Block MySQL upgrades if root MySQL password is malformed.
  • Fixed case 78001: Ensure that SSHD is restarted properly when managed via Service Manager.
  • Fixed case 101561: Cpsrvd redirects cause two connections to be generated.

11.42.1.20


2014-06-16

  • Fixed case 102989: Remove or modify more options from /etc/my.cnf on upgrade.
  • Fixed case 103305: Disable mod_userdir when Apache MPM ITK is installed.
  • Fixed case 104137: Correctly update 'table_cache' when upgrading MySQL.

11.42.1.18


2014-06-10

  • Fixed case 86561: Updated cpanel-cgiemail to 1.6-5.cp1136.
  • Fixed case 95813: Properly dump MySQL 5.6 databases for 5.5.
  • Fixed case 102041: Updated location of dnspython sourcecode.

11.42.1.17


2014-06-04

  • Fixed case 99393: Updated mailman to 2.1.18-1.
  • Fixed case 100081: Allow privileged execution of inaccessible hook scripts.
  • Fixed case 100769: Update /scripts/enablefileprotect with Apache MPM ITK support.
  • Fixed case 101041: Increase timeout for SQLDUMP and BACKUP cpmysql calls.

11.42.1.16


2014-05-19

  • [security] Fixed case 78301: Correct patch for CVE-2002-1575 in cgiemail.
  • [security] Fixed case 91105: Self-stored XSS vulnerability in cPanel FTP accounts list.
  • [security] Fixed case 92745: Private SSH key passwords disclosed during key generation and import.
  • [security] Fixed case 92753: Session file name disclosure via SafeFile command line rewriting.
  • [security] Fixed case 93017: Arbitrary Code Execution via WHM Thirdparty Service Calls.
  • [security] Fixed case 93021: Arbitrary code execution via Cpanel::Thirdparty::serviceinfo API call.
  • [security] Fixed case 93117: Reflected XSS vulnerability in /cgi-sys/guestbook.cgi.
  • [security] Fixed case 93141: Reflected XSS vulnerability in Entropy Chat.
  • [security] Fixed case 93269: Transfer CGI scripts allow downloads of a cPanel account.
  • [security] Fixed case 93641: Self-stored XSS vulnerability in modify and add auto responder interfaces.
  • [security] Fixed case 93965: Self-stored XSS vulnerability in filemanager compression and decompression.
  • [security] Fixed case 93985: Self XSS vulnerability in cPanel cPAddons interface.
  • [security] Fixed case 94497: Denial of service via Boxtrapper cgi-sys script.
  • [security] Fixed case 94501: Stored XSS vulnerability in WHM List Accounts interface.
  • [security] Fixed case 94741: Self XSS vulnerability in cPanel Add Spam Filter interface.
  • [security] Fixed case 94745: Self XSS vulnerability in cPanel mail filter deletion interface.
  • [security] Fixed case 94773: Self XSS vulnerabilities on multiple pages via 'itemsperpage' parameter.
  • [security] Fixed case 94793: Self XSS vulnerability in cPanel BoxTrapper configuration interface.
  • [security] Fixed case 94825: Self XSS vulnerability in delete mail account interface.
  • [security] Fixed case 94929: Self XSS vulnerability in cPanel add redirect interface.
  • [security] Fixed case 94937: Self XSS vulnerability in cPanel MySQL Wizard.
  • [security] Fixed case 95577: Self XSS vulnerability in cPanel remove blocked IP interface.
  • [security] Fixed case 95617: Arbitrary database access via cpmysqladmin ADDDBPRIVS command.
  • [security] Fixed case 95805: Self XSS vulnerability in cPanel FTP disconnect interface.
  • [security] Fixed case 96017: Self XSS vulnerability in /frontend/x3/mime/delredirect.html.
  • [security] Fixed case 96021: Stored XSS vulnerability in cPanel Virus Scanner.
  • [security] Fixed case 96201: Self XSS vulnerability in WHM Reset Resellers interface.
  • [security] Fixed case 96209: Self XSS vulnerability in WHM Terminate Multiple Accounts interface.
  • [security] Fixed case 96293: Self-stored XSS vulnerability in WHM Statistics Software Configuration interface.
  • [security] Fixed case 96313: Arbitrary permissions change via fixsuexeccgiscripts script.
  • [security] Fixed case 96505: Stored XSS vulnerability in WHM shopping cart reset interface.
  • [security] Fixed case 96509: Stored XSS vulnerability in WHM Repair MySQL Table interface.
  • [security] Fixed case 96521: Self XSS vulnerability in WHM Change Mailman Password interface.
  • [security] Fixed case 96525: Stored XSS vulnerability in WHM mail directory conversion output.
  • [security] Fixed case 96541: Arbitrary code execution as root via WHM "Check and Repair a Perl Script".
  • [security] Fixed case 96545: Self XSS vulnerability in WHM Edit Zone Templates interface.
  • [security] Fixed case 96721: Arbitrary permissions change via multiple scripts.
  • [security] Fixed case 96737: Arbitrary file ownership change via chownpublichtmls script.
  • [security] Fixed case 96793: Stored XSS vulnerability in cPanel FTP Session Control interface.
  • [security] Fixed case 96801: Stored XSS vulnerability in WHM Mailserver Selection interface.
  • [security] Fixed case 96869: Stored XSS vulnerability in WHM showacctcopylog interface.
  • [security] Fixed case 96877: Stored XSS vulnerability in WHM cluster trust settings interface.
  • [security] Fixed case 97429: Bypass of local zone ownership restrictions via DNS clustering commands.
  • [security] Fixed case 97993: Mailman list password disclosed to local users during password change.
  • [security] Fixed case 98001: Arbitrary YAML file read via Configure Customer Contact.
  • [security] Fixed case 98117: Miscategorization of DNS Clustering ACL.
  • [security] Fixed case 98121: Miscategorization of Locales ACL.
  • [security] Fixed case 99213: Stored XSS vulnerability in WHM Setup Remote MySQL Server interface.
  • [security] Fixed case 99309: Stored XSS vulnerability in WHM Edit Zone Templates interface.
  • [security] Fixed case 99365: Self-stored XSS vulnerability in WHM Copy/Transfer Account interface.
  • [security] Fixed case 99377: Self-stored XSS vulnerability in WHM remote MySQL configuration interface.
  • [security] Fixed case 99957: Self XSS vulnerability in Entropy Banner interface.

11.42.1.15


2014-05-13

  • Fixed case 95621: Corrected issue with Optimize website procedure.
  • Fixed case 97277: Corrected ARGV parsing in /scripts/wwwacct.
  • Fixed case 99565: Addressed several edge cases for proxy subdomains.

11.42.1.13


2014-04-30

  • Fixed case 99721: Updated cpanel-php54-Net-FTP to 1.3.7-3.cp1142.

11.42.1.12


2014-04-23

  • Fixed case 98209: Added sanity checks to avoid unwanted warnings in Cpanel::Template.
  • Fixed case 99137: Added checks to address issues reported with IPv6 usage in apache.

11.42.1.11


2014-04-15

  • Fixed case 97369: Fix ImportError when trying to reset mailman password.
  • Fixed case 97417: Corrected behavior of cPanel proxies seen on certain servers.
  • Fixed case 97513: Rebuild httpd.conf to latest template changes are present.
  • Fixed case 97653: Updated httpd.conf rebuild process and associated parsers.
  • Fixed case 97853: Only use SSLProxyCheckPeerName for Apache 2.4.5+.

11.42.1.7


2014-04-11

  • Fixed case 82597: CPanel proxy subdomains use the configured cPanel service cert.
  • Fixed case 97245: Corrected SSL redirect behavior for subdomain proxies.
  • Fixed case 97349: Make whm_xfer_download-ssl.pl wait for its child tar process to finish.

11.42.1.6


2014-04-10

  • Fixed case 93025: Update Squirrelmail to SVN r14346.
  • Fixed case 94505: Re-add phpPgAdmin 5.0 for CentOS 5.
  • Fixed case 96565: Updated cpanel-php54-kronolith to 4.1.3-3.cp1142.

11.42.0.24


2014-04-09

  • Fixed case 93325: Updated 'Backup Restoration' page to display weekly backups properly.
  • Fixed case 93753: Update cpanel-awstats to 7.0-5.cp1136.

11.42.1.5


2014-04-07

  • Fixed case 89953: Correctly handle email trace for resellers that owns no accounts.
  • Fixed case 93009: Fix pagination on redirects page.
  • Fixed case 93845: Updated bin/backup to account for active transports.
  • Fixed case 94769: Update Horde data when modifying an account username.
  • Fixed case 95049: Don't fail to update logaholic on hostname conflict.
  • Fixed case 95181: Change release notes URL to point to new docs server.
  • Fixed case 95329: Add necessary priviledges before updating user.
  • Fixed case 95449: Fetch in-WHM change logs from atom.cpanel.net.
  • Fixed case 95493: Fixed 'Park a Domain' behaviour in WHM.
  • Fixed case 95853: Don't cause vhost warnings on Apache 2.2.
  • Implemented cases 96237,96317,96409: Added dnsadmin[-ssl] post-build tests.

11.42.1.3


2014-04-02

  • Fixed case 96129: Rebuilt v11.42.1.2 to address a build issue.

11.42.1.2


2014-04-01

  • Fixed case 93913: Ensure mailman virtfs mounts are properly configured.
  • Fixed case 94409: Limit the size of text field in DNS zone editor.
  • Fixed case 94453: Fix security token error in Copy a Locale.
  • Fixed case 94889: Back up Horde data with incremental backups.
  • Fixed case 95029: Prevent needless warning messages on upgrade.
  • Fixed case 95341: Fix unexpected success of domainuserdata XML-API call.

11.42.1.1


2014-03-27

  • Fixed case 40448: Always allow main account to send mail.
  • Fixed case 46364: Updated cpanel proxy configuration to work with SSL properly.
  • Fixed case 46382: Reset MySQL password when email password reset is used.
  • Fixed case 57709: Report the main IP from dnsadmin's GETIPS call.
  • Fixed case 59581: Combine multiple notification emails into a single to field.
  • Fixed case 61738: Changing MySQL Host correctly updates logaholic.
  • Fixed case 62072: Consider ignmore_minimum from MyDNS conf when saving zone records.
  • Fixed case 62340: Adjust spamd running state when tweak settings enables/disables SA.
  • Fixed case 65697: Teach Apache SpamAssassin to find a default user_prefs.template file from sa-update.
  • Fixed case 72049: Don't fail to validate SFTP destinations with banner.
  • Fixed case 72777: Handle some unusual FTP file listing formats.
  • Fixed case 77509: When stat generators were off by default incorrect information was shown.
  • Fixed cases 81689,83461: Modified cpsrvd to execute mailman checks before checking for other mime types.
  • Fixed case 81909: Update Server Admin email when hostname is changed.
  • Fixed case 82289: Improve MySQL error reporting in restorepkg.
  • Fixed case 82349: Update cpanel-clamav to 0.98.1-2.cp1140.
  • Fixed case 82565: Permit selection of dso when /usr/bin/php is broken.
  • Fixed case 82753: Removed obsolete files: browsessl.js, etc.
  • Fixed case 83073: Update courier-authlib to 0.66.1-1.cp1136.
  • Fixed case 83193: Enable FTP UI touch file when FTP RPM is unmanaged.
  • Fixed case 83489: Prevent killing sendmail processes on upgrade.
  • Fixed case 83797: Deliver all local mail outside the jail when inside the jail.
  • Fixed case 84029: Restored order in Cpanel::Form parsing.
  • Fixed case 84109: Make delivery to lists named like foo-admin work.
  • Fixed case 84473: Added no-cache to the headers in countedit.cgi.
  • Fixed case 84537: Retry dovecot trash expunge if doveadm expunge commit fails.
  • Fixed case 84593: Updated SSHTerm applet to address authentication bugs.
  • Fixed case 84701: Change ClamAV detection logic to be based on clamav, not it's socket file.
  • Fixed case 86261: Added missing id to x3/passwd/index.html. Standardized id.
  • Fixed case 86537: Return error on password protect enable failure.
  • Fixed case 86549: Addressed cPHulkd false positive emails for Pure-FTPd root logins.
  • Fixed case 86701: Restart cpdavd on ssl install/reset.
  • Fixed case 87501: Fix incorrect traceroute status display in WHM and cPanel.
  • Fixed case 87581: Allow changing passwords when cgihidepass is enabled.
  • Fixed case 87585: Provides a list of reseller-owned accounts to DeliveryReport.
  • Fixed case 87637: Do not show Support icon when Customer Contact is disabled.
  • Fixed case 87677: Update cpanel-git to 1.8.5.3-1.cp1136.
  • Fixed case 87789: Restored confirmation message Leech Protection in paper_lantern.
  • Fixed case 87857: Adding more validation context cases.
  • Fixed case 88037: Added support for larger FTP quotas in Cpanel.
  • Fixed case 88065: Add a script to generate tags files.
  • Fixed case 88337: Do not copy frontpage files when frontpage directory is missing.
  • Fixed case 88721: Further improved Comet message cleanup.
  • Fixed case 88805: Fix clobbering undefined values in editpkg.
  • Fixed case 88825: Only build RPMs that have been updated.
  • Fixed case 88881: Add a lock to prevent errors when creating multiple accounts in parallel.
  • Fixed case 88897: Avoid duplicate entry errors with eximstats.
  • Fixed case 88941: Reduce apache startup message chkservd email size.
  • Fixed case 88977: Rebuild named.conf on cloudlinux installs.
  • Fixed case 88993: Update nsd to 3.2.17-1.cp1136.
  • Fixed case 89001: Update courier-imap to 4.15-1.cp1136.
  • Fixed case 89017: Don't warn on account creation if Postgres is missing.
  • Fixed case 89337: Allow www subdomains when generating CSRs.
  • Fixed case 89409: Fix table column name used in "Raw Access Log".
  • Fixed case 89433: Remove unnecessary checks for traceroute.
  • Fixed case 89517: Fix file access in whostmgr's rootmail function.
  • Fixed case 89581: Fixed issue with VPS logo position in paperlantern.
  • Fixed case 89629: Fixed a bug in the FTP sessions page for accounts with long usernames.
  • Fixed case 89769: Update MySQL-55 to latest version.
  • Fixed case 90037: Fixed issue with Addon description text.
  • Fixed case 90053: Add services to /scripts/restartsrv.
  • Fixed case 90057: Restart rsyslogd if syslogd init script is not found.
  • Fixed case 90061: Wait until clamd is fully started before checking if it is running.
  • Fixed case 90145: Update exim to 4.82-3.cp1136.
  • Fixed case 90377: Update MySQL-56 to latest release.
  • Fixed case 90381: Update MySQL56 to 5.6.16-3.cp1142.
  • Fixed case 90417: Update reset mailman password script to not use deprecated module.
  • Fixed case 90605: Add .map as a static document type.
  • Fixed case 90609: Update dovecot to 2.2.12-1.cp1140.
  • [security] Fixed case 90637: Update cpanel-ImageMagick to 6.8.8-1.cp1136.
  • Fixed case 90745: Update cplint to 0.64.
  • Fixed case 90853: Fix virtfs double mount attempt issue that caused timeouts.
  • Fixed case 90857: Error out in MySQL Upgrade when MySQL is unmanaged.
  • Fixed case 90941: Prevent strictness warnings for Live PHP.
  • Fixed case 90989: Allow changing MySQL passwords without old password.
  • Fixed case 91029: Update cpanel-git to 1.9.0-1.cp1136.
  • Fixed case 91133: AcctLock the uid allocation and user creation process together.
  • Fixed case 91157: Redirect to Service SSL domain when Always Redirect to SSL is enabled.
  • [security] Fixed case 91217: Update cpanel-libxml2 to 2.9.1-1.cp1136.
  • Fixed case 91505: Added warning to the Nautilus secion of the webdisk page.
  • Fixed case 91653: Do not ignore failure when creating a subdomain.
  • Fixed case 91657: Allow rebuilding EasyApache with new settings on MySQL upgrade.
  • Fixed case 91997: Restore all Address Books for Horde user on account transfer.
  • Fixed case 92061: Improve Cpanel::Config::ConfigObj error reporting.
  • Fixed case 92065: Don't write password caches for non-root privileged users.
  • Fixed case 92113: Correct $domain usage in loop iteration.
  • Fixed case 92229: Add security token to link in Remote MySQL page.
  • Fixed case 92433: Update cpanel-php54 to 5.4.23-3.cp1142.
  • Fixed case 92441: Allow backups of Horde 5.1.4 data.
  • Fixed case 92545: Update cpanel-mydns to 1.2.8.31-6.cp1136.
  • Fixed case 92773: Ensure the license update runs when cpsrvd starts up.
  • Fixed case 92817: Remove old pid files before attempting a MySQL upgrade.
  • Fixed case 92861: Fix prefixing on database names in copy/move PMA calls.
  • Fixed case 92909: Update cPanel::TaskQueue to 0.606-1.cp1136.
  • Fixed case 92921: Fix scripts/updatefrontpage when downloading the RPM.
  • Fixed case 92965: Format usage data properly for stats display.
  • Fixed case 92973: Remove new line from input to cphulkd.
  • Fixed case 92977: Pkgacct antitimeout child must die on parent termination.
  • Fixed case 92989: Clean out old RoundCube attachments periodically.
  • Fixed case 93005: Fix privilege check for routines.
  • Fixed case 93045: PaperLantern autoresponders now save correct values for From and Subject.
  • Fixed case 93101: Fixed minor JS bug on the Backup Configuration screen.
  • Fixed case 93109: Increase MySQL open_files_limit on account transfer if needed.
  • Fixed case 93177: Dereference symlinks when determining MIME types.
  • Fixed case 93181: Minor updates to the UX on the Backup Restoration page.
  • Fixed case 93185: Restore existing addon domains when clustering enabled.
  • Fixed case 93253: Ensure mailman jailshell mounts are configured properly.
  • Fixed case 93293: Don't default CONTACTPAGER to root's email address.
  • Fixed case 93325: Updated 'Backup Restoration' page to display weekly backups properly.
  • Fixed case 93357: Fix an error in the privileges screen in phpMyAdmin.
  • Fixed case 93413: Enable TCP wrapper support in proftpd.
  • Fixed case 93501: Only show user-controlled Ruby gems in installed gem list.
  • Fixed case 93629: PhpPgAdmin: Disabled export tab when no database is selected.
  • Fixed case 93633: Updated Cpanel::Rand::Get::getranddata() to use less entropy.
  • Fixed case 93673: Fixed a bug with monthly backup process.
  • Fixed case 93717: Prevent SSL redirection requirements on api calls.
  • Fixed case 93753: Update cpanel-awstats to 7.0-5.cp1136.
  • Fixed case 93761: Fix creation of multi-level subdomains.
  • Fixed case 93853: Updated restorepkg to account for the filename specified at cli.
  • Fixed case 93861: Remove attempt to change permissions of listadmin.
  • Fixed case 93909: Update cpanel-php54-imp to 6.1.4-2.cp1142.
  • Fixed case 94009: Optimized alwaysredirectssl behavior normalization.
  • Fixed case 94029: Restore grants on transfer to server with remote MySQL.
  • Fixed case 94141: Fall back to /proc/net/tcp lookup if netlink lookup fails.
  • Fixed case 94145: Fixed the radio button label in Default Address.
  • Fixed case 94149: Prevent pkgacct timeout during archive creation.
  • Fixed case 94157: Updated to remove 'loghint.js' references.
  • Fixed case 94265: Update node-packages to 1.3-1.cp1140.
  • Fixed case 94281: Automatically upgrade cPanel MySQL RPMs to 5.5 on DNSOnly servers.
  • Fixed case 94305: Prevent open log error when /var/cpanel/logs dir not available.
  • Fixed case 94393: Avoid htaccess corruption with express transfers.
  • Fixed cases 94401,94137: Allow creation of subdomains of subdomains.
  • Fixed case 94437: Don't ship world-writable files.
  • Fixed case 94489: Properly handle MySQL version numbers.
  • Fixed case 94665: Updated /scripts/smtpmailgidonly to update cpanel.config as needed.
  • Fixed case 94673: Fix two typographical errors in updatenow.
  • Fixed case 94737: Updated MySQL56 to 5.6.16-4.cp1142.
  • Fixed case 94837: Don't error out on complex subjectAltNames.
  • Fixed case 94849: Update .htaccess if it doesn't end with a newline.
  • Fixed case 95009: Prevent Cpanel::Ident from returning listener socket info.
  • Fixed case 95025: Fix pure-ftpd authentication problem.
  • Fixed case 95061: Skip HasApacheConfEntry on PKGRESTORE.
  • Implemented case 81461: Fixed /scripts/rebuildhttpdconf's virtualhost include behavior.
  • Implemented case 87077: Add amp() to embedded method list.
  • Implemented case 88125: Implemented access log filtering. Implemented DNS only check. Duration fix.
  • Implemented case 88869: Update cplint to 0.063-1.cp1136.
  • Implemented case 88873: Update cpanel-php54-kronolith to 4.1.3-2.cp1142.
  • Implemented case 88953: Update to mailman 2.1.17.
  • Implemented case 89765: Update MySQL56 to 5.6.16-1.cp1142.
  • Implemented case 90317: Removed mysqltuner from distribution.
  • Implemented case 90889: Open video tutorials in a new window or tab.
  • Implemented case 93609: Added MySQL's userstat value from /etc/my.cnf to the quicksand meta.yaml.
  • Implemented case 94577: Prevent user from enabling suEXEC when Apache MPM Itk is installed.

11.42.0.23


2014-03-24

  • [security] Fixed case 85329: Sensitive information disclosed via multiple log files.
  • [security] Fixed case 86337: Injection of arbitrary DNS zonefile contents via cPanel DNS zone editors.
  • [security] Fixed case 87205: Open redirect vulnerability in FormMail-clone.
  • [security] Fixed case 87873: Multiple format string vulnerabilities in Cpanel::API::Fileman.
  • [security] Fixed case 88577: Arbitrary file overwrite via trackupload parameter.
  • [security] Fixed case 88793: External XML entity injection in WHM locale upload interface.
  • [security] Fixed case 89009: Arbitrary code execution for ACL limited resellers via WHM Activate Remote Nameservers interface.
  • [security] Fixed case 89057: Fix self-XSS vulnerability on reseller branding download page.
  • [security] Fixed case 89133: Fix self-stored XSS vulnerability in WHM Backup Configuration.
  • [security] Fixed case 89137: Fix self-XSS vulnerability in WHM Local XML Upload.
  • [security] Fixed case 89377: Arbitrary code execution for ACL limited resellers via WHM objcache.
  • [security] Fixed case 89729: Insufficient ACL checks in WHM Modify Account interface.
  • [security] Fixed case 89733: Injection of arbitrary data into cpuser configuration files via wwwacct.
  • [security] Fixed case 89789: Arbitrary code execution for ACL limited resellers via batch API.
  • [security] Fixed case 90001: Sensitive information disclosed via update-analysis tarballs.
  • [security] Fixed case 90213: Self XSS vulnerability in WHM MySQL Root Password interface.
  • [security] Fixed case 90225: Multiple self XSS vulnerabilities in CloudLinux LVE Manager.
  • [security] Fixed case 90249: Self XSS vulnerability in WHM Xferlog Tail.
  • [security] Fixed case 90257: Self XSS vulnerability in WHM Edit System Mail Preferences.
  • [security] Fixed case 90261: Stored XSS Vulnerability in WHM SSH Check.
  • [security] Fixed case 90265: Open mail relay via injection of FormMail -clone parameters.
  • [security] Fixed case 90289: Self XSS vulnerability in WHM Zone Editor.
  • [security] Fixed case 90757: Self XSS vulnerability in Mailing Lists Admin Privledges Delegation.
  • [security] Fixed case 90773: Self-stored XSS vulnerability in cPanel Hotlink Protection.
  • [security] Fixed case 90777: Self-stored XSS vulnerability in Web Disk Accounts.
  • [security] Fixed case 90817: Self XSS vulnerability in listfmfiles.json.
  • [security] Fixed case 90837: Self-stored XSS vulnerability in Redirects.
  • [security] Fixed case 91253: Stored XSS vulnerability in cPAddons Moderation Requests.
  • [security] Fixed case 91457: Self XSS vulnerability in cPanel PHP Test.
  • [security] Fixed case 91461: Self XSS vulnerability in Entropy Banner Upload.
  • [security] Fixed case 91633: Self XSS vulnerability in Fetch Mail Archive.
  • [security] Fixed case 91677: Self-stored XSS vulnerability in cPanel Image Manager Scaler.
  • [security] Fixed case 91681: Self-stored XSS vulnerability in cPanel Image Manager Thumbnailer.
  • [security] Fixed case 91717: Self-XSS vulnerabilities in BoxTrapper _getaccountinfo/BoxTrapper_getemaildirs.
  • [security] Fixed case 91741: Arbitrary code execution via backup excludes.
  • [security] Fixed case 91973: Self XSS vulnerability in cPanel Image Manager Scaler.
  • [security] Fixed case 91977: Self XSS vulnerability in cPanel Image Manager Format Converter.
  • [security] Fixed case 91981: XSS Vulnerabilities in cPanel Image Manager Thumbnailer.
  • [security] Fixed case 92133: Self XSS vulnerability in Delete Private SSH Key.
  • [security] Fixed case 92157: Stored XSS vulnerability in FrontPage Install/Uninstall.
  • [security] Fixed case 92421: Self XSS vulnerability in Mail Settings Container AJAX.
  • [security] Fixed case 92489: SSH private key disclosure during key import process.
  • [security] Fixed case 92593: Reflected XSS vulnerability in Entropy Search.
  • [security] Fixed case 92601: User .my.cnf files set to world readable during upcp.
  • [security] Fixed case 93089: Self XSS Vulnerability in Redirect Removal Confirm.
  • [security] Fixed case 93125: Self XSS Vulnerability in Default Website Page.
  • [security] Fixed case 94201: Insufficient validation allows password reset of arbitrary users.

11.42.0.22


2014-03-14

  • Fixed case 74969: Allow restore of monthly and weekly incremental backups.
  • Fixed case 93185: Restore existing addon domains when clustering enabled.
  • Fixed case 93193: Fix RoundCube database restore problem.

11.42.0.21


2014-03-10

  • Fixed case 92805: Correct php.ini symlink to point to 5.4 php.ini.
  • Implemented case 92857: MySQL upgrade note: Discontinued support for userstats patch.

11.42.0.20


2014-03-06

  • Fixed case 92761: Update phpMyAdmin integration code for compatability w/ PMA upstream.

11.42.0.19


2014-03-06

  • Fixed case 89589: Patch SquirrelMail to support different character sets.
  • Fixed case 92409: Update cpanel-php54-ingo to 3.1.2-3.cp1142.
  • Fixed case 92633: Block MySQL 5.6 upgrade if userstat (unsupported) is enabled.

11.42.0.17


2014-03-03

  • Fixed case 91833: Update phpMyAdmin to 4.1.8.
  • Fixed case 91873: Update cpanel-php54-ingo to 3.1.2-2.cp1142.
  • Fixed case 92101: Disable using old-style MySQL passwords with 5.6.
  • Fixed case 92109: Warn against upgrades to MySQL 5.6 if using old-style passwords.
  • Fixed case 92305: Only attempt to convert Horde filters on restore if not done yet.
  • Fixed case 92197: Amend MySQL upgrade warning text based on feedback.

11.42.0.15


2014-02-26

  • Fixed case 89769: Update MySQL-55 to latest version.
  • Fixed case 91201: Rebuild CLDR JSON data.
  • Fixed case 91709: Use correct temp db grants for Horde on account restore.
  • Fixed case 91713: Fix newline handling in Horde notes.
  • Fixed case 91725: Migrate Horde filters on account restore.
  • Fixed case 91877: Clean environment before restoring Horde filters.

11.42.0.12


2014-02-19

  • Fixed case 91249: Fix Horde db problem when an account is terminated.

11.42.0.11


2014-02-17

  • Fixed case 90601: Only increment token failure counter if token supplied.
  • Fixed case 90637: Update cpanel-ImageMagick to 6.8.8-1.cp1136.
  • Fixed case 90897: Strip out unserializable data when making JSON for API calls.
  • Fixed case 90957: Run update_horde_config when Horde is enabled in Tweak Settings.
  • Fixed case 90965: Fix Latin American Spanish calendar issue caused by missing es_419.json file.
  • Fixed case 90993: Fix problem with update_horde_config running from TaskQueue.
  • Fixed case 91021: Fix default sendmail path in PHP 5.4.

11.42.0.8


2014-02-13

  • Fixed case 87377: Do not add AAAA records for remote mx records.
  • Fixed case 87961: Fixed issues with "Show Available Perl Modules" button in Perl Modules.
  • Fixed case 90077: Fix XML use of Live API in PHP.
  • Fixed case 90109: Update Capture::Tiny RPM to 0.24-1.cp1136.
  • Fixed case 90377: Update MySQL-56 to latest release.
  • Fixed case 90381: Update MySQL56 to 5.6.16-3.cp1142.
  • Fixed case 90409: Skipping DNS part ownership in restore and whm.
  • Fixed case 90545: Ensure users get the same security token on an additional login.
  • Implemented case 87513: Update cpanel-perl-514-Locale-Maketext-Utils to 0.41-1.cp1136.

11.42.0.6


2014-02-12

  • [security] Fixed case 89985: Disclosure of cpanel-horde's MySQL password due to world-readable backups.

11.42.0.5


2014-02-04

  • Fixed case 89405: Allow restorepkg to restore a terminated account if the zone still exists.
  • Fixed case 89825: Fix parking a domain through WHM.

11.42.0.4


2014-02-03

  • [security] Fixed case 84385: Arbitrary code execution as cpanel-horde user via cache file poisioning.
  • [security] Fixed case 84633: Fix multiple self XSS vulnerabilities in Cpanel::Htaccess.
  • [security] Fixed case 84877: Fix self XSS vulnerability in Initial Setup Wizard.
  • [security] Fixed case 84881: Fix stored XSS vulnerability in Set Default Address.
  • [security] Fixed case 84885: Fix XSS vulnerability in /x3/mail/filters/editfilter.html.
  • [security] Fixed case 84893: Fix XSS vulnerabilities in BoxTrapper Configuration.
  • [security] Fixed case 84897: Fix self XSS vulnerabilities in HTTP Bandwidth View.
  • [security] Fixed case 84901: Fix stored XSS vulnerability in Image Thumbnailer.
  • [security] Fixed case 85029: Fix self XSS vulnerability in Import Addresses/Forwarders.
  • [security] Fixed case 85133: Fix stored XSS vulnerability in File Editor.
  • [security] Fixed case 85177: Fix multiple self XSS vulnerabilities in CGI Center.
  • [security] Fixed case 85229: Fix multiple self XSS vulnerabilities in PostgreSQL database deletion.
  • [security] Fixed case 85249: Fix XSS vulnerability in Add Postgres User to DB.
  • [security] Fixed case 85457: Fix self XSS vulnerability in BoxTrapper Verification.
  • [security] Fixed case 85461: Fix multiple self XSS vulnerabilities in Cpanel::Boxtrapper.
  • [security] Fixed case 85589: Fix XSS vulnerability in Tweak Settings.
  • [security] Fixed case 85981: Fix XSS vulnerability in WHM Add A Package interface.
  • [security] Fixed case 86017: Fix XSS vulnerability in Security Questions interfaces.
  • [security] Fixed case 86329: Fix stored XSS vulnerability in Edit MX Entry.
  • [security] Fixed case 86341: Arbitrary file read as root during cPanel account creation for ACL limited resellers.
  • [security] Fixed case 86381: Disclosure of root's accesshash to ACL limited resellers via WHM xml-api.
  • [security] Fixed case 86453: Injection of arbitrary settings into cpuser files via account creation.
  • [security] Fixed case 86461: Overwriting of trusted inputs to third party hooks scripts.
  • [security] Fixed case 86857: Limited arbitrary file overwrite for ACL limited resellers via domain parking.
  • [security] Fixed case 87081: Fix self-XSS vulnerability in Redirects.
  • [security] Fixed case 87317: Arbitrary code execution as root for ACL limited resellers via cluster configuration interfaces.
  • [security] Fixed case 87421: Fix XSS vulnerability in code editor.
  • [security] Fixed case 87433: Injection of arbitrary settings into cpuser files via mxcheck setting.
  • [security] Fixed case 87437: ACL limited resellers allowed to disable digest authentication for arbitrary accounts.
  • [security] Fixed case 87457: Fix self-XSS vulnerability in cPAddons Feature Manager.
  • [security] Fixed case 87625: ACL limited resellers allowed to restore backups for the accounts they control.
  • [security] Fixed case 88061: Mis-assignment of IP addresses for ACL limited resellers via createacct.
  • [security] Fixed case 88093: Fix XSS vulnerability in Full Backup.
  • [security] Fixed case 88097: Fix XSS vulnerability in Restore Files.
  • [security] Fixed case 88129: Fix XSS vulnerability in Restore a MySQL Backup.
  • [security] Fixed case 88133: Fix XSS vulnerability in Restore Email Filters.
  • [security] Fixed case 88137: Fix XSS vulnerability in Full Backup.
  • [security] Fixed case 88141: Fix XSS vulnerability in IP Deny Manager.
  • [security] Fixed case 88145: Fix XSS vulnerability in IP Deny Manager.
  • [security] Fixed case 88149: Fix XSS vulnerability in IP Deny Manager index page.
  • [security] Fixed case 88153: Fix XSS vulnerability in Image Tools.
  • [security] Fixed case 88157: Fix XSS vulnerability in various pages that save files.
  • [security] Fixed case 88165: Fix XSS vulnerability in Legacy File Manager file extraction.
  • [security] Fixed case 88173: Fix XSS vulnerability in Legacy File Manager viewer.
  • [security] Fixed case 88181: Fix XSS vulnerability in FrontPage status listing.
  • [security] Fixed case 88209: Fix multiple XSS vulnerabilities in Cpanel::LeechProtect.
  • [security] Fixed case 88213: Fix XSS vulnerability in Network Tools.
  • [security] Fixed case 88229: Fix XSS vulnerability in Parked Domains.
  • [security] Fixed case 88253: Fix XSS vulnerability in PostgreSQL user removal.
  • [security] Fixed case 88257: Fix XSS vulnerability in Analog log viewer.
  • [security] Fixed case 88261: Fix XSS vulnerability in subdomain redirects.
  • [security] Fixed case 88265: Fix XSS vulnerability in adding a subdomain.
  • [security] Fixed case 88269: Fix stored XSS vulnerability in cPAddons.
  • [security] Fixed case 88277: Fix XSS vulnerability in MySQL APIs.
  • [security] Fixed case 88281: Fix multiple XSS vulnerabilities in BoxTrapper queue search.
  • [security] Fixed case 88285: Fix XSS vulnerability in BoxTrapper::changestatus.
  • [security] Fixed case 88289: Fix XSS vulnerability in BoxTrapper::editmsg.
  • [security] Fixed case 88293: Fix XSS vulnerability in BoxTrapper::listmsgs.
  • [security] Fixed case 88297: Fix XSS vulnerability in BoxTrapper::messageaction.
  • [security] Fixed case 88301: Fix XSS vulnerability in BoxTrapper::resetmsg.
  • [security] Fixed case 88305: Fix stored XSS vulnerability in BoxTrapper::showemails.
  • [security] Fixed case 88309: Fix XSS vulnerability in BoxTrapper::showlog.
  • [security] Fixed case 88313: Fix XSS vulnerability in BoxTrapper::showmsg.
  • [security] Fixed case 88321: Fix XSS vulnerability in BoxTrapper::getboxconfdir.
  • [security] Fixed case 88325: Fix multiple XSS vulnerability in BoxTrapper.
  • [security] Fixed case 88341: Arbitrary code execution for ACL limited resellers during account creation.

11.42.0.3


2014-01-31

  • Fixed case 87609: Correct typo in "Web Template Editor" template.
  • Fixed case 88709: Update cpanel-php54-ioncube to 4.5.2-1.cp1142.
  • Fixed case 89369: Migrate horde filters during horde update.
  • Fixed case 89449: Add both 127.0.0.1 and localhost grants for horde.

11.42.0.1


2014-01-27

  • Fixed case 59137: Reduced the cruft left behind by Cpanel::Comet.
  • Fixed case 60051: Redirect x3 Video Tutorials page.
  • Fixed case 61981: Prevent system calls from leaking into headers with set_tweaksettings.
  • Fixed case 64567: Cphulkd database not created when switching between local/remote mysql.
  • Fixed case 84193: Reassign Postgres object ownership before user removal.
  • Fixed case 84781: Park domains are not removed from the datastore when SSL vhosts exist.
  • Fixed case 84841: Correctly set IPv6 address in userdata_update.
  • Fixed case 86209: Make sure PostgresAdmin load all needed modules.
  • Fixed case 86693: Exclude skipping commit message option when invoking cplint in merge_request.
  • Fixed case 86773: Clean up stale and invalid virtfs lock files.
  • Fixed case 86853: Adding in WHM/cPanel context for Park/Addon.
  • Fixed case 87153: Fix URL in email to prevent incorrect redirecting to a different location.
  • Fixed case 87493: Setup cpanelhorde user before installing Horde RPMs.
  • Fixed case 87549: Restore display of reseller news.
  • Fixed case 87561: Refactor PostgresUtils to not use AdvConfig.
  • Fixed case 87657: Ensure import() isn't called unexpectedly.
  • Fixed case 87669: Update MySQL 56 to latest release.
  • Fixed case 87745: Fix display of cPAddons list in WHM Feature List.
  • Fixed case 87817: Fix 'Tweak Settings' help URL targets.
  • Fixed case 87881: Update cpanel-clamav to 0.98.1-1.cp1140.
  • Fixed case 88029: Fix horde & remote mysql.
  • Fixed case 88085: Ensure that we drop privs to read users' .my.cnf files.
  • Fixed case 88377: Cpanel::MysqlUtils::Connect checks for MySQL socket.
  • Fixed case 88381: Update MySQL 51 to 5.1.73.
  • Fixed case 88385: Update MySQL56 to 5.6.15-1.cp1142.
  • Fixed case 88389: Update MySQL55 to 5.5.35-1.cp1136.
  • Fixed case 88593: Catch failure to connect to PostgreSQL in wwwacct.
  • Fixed case 88637: Ensure only enabled features are shown in cpaddons.
  • Fixed case 88813: Update cpanel-php54-Horde-Role to 1.0.1-3.cp1142.
  • Implemented case 84509: Update phpPgAdmin to version 5.1.

11.41.0.2


2014-01-14

  • Fixed case 3547: Optimize Website now governed by Feature List control.
  • Fixed case 58946: Restore the ability to set min defer threshold.
  • Fixed case 61373: Remove rollback support for FreeBSD Configuration
  • file in WHM.
  • Fixed case 63630: Display warning when changing usernames.
  • Fixed case 69349: Correct disclaimer in 3-clause BSD license.
  • Fixed case 78205: Remove node-waf from build tools linked binaries.
  • Fixed case 78285: Refactor privilege-dropping methods.
  • Fixed case 78445: Fixed input text and password styles in stylesheet.
  • Fixed case 78549: Display the correct number of jobs when building
  • locale databases.
  • Fixed case 78985: Fixed the background color of sections/wells in WHM
  • pages.
  • Fixed case 78989: Fixed alignment of the account selectors in WHM pages.
  • Fixed case 79153: Updated UAPI calls to bubble adminbin errors.
  • Fixed case 79173: Fixed Restart Services section pages in WHM to left
  • align.
  • Fixed case 79181: Fixed the description and introduction text styles.
  • Fixed case 79197: Fixed alignment issue with modify upgrade multiple
  • accounts page.
  • Fixed case 79201: Fixed alignment issues that use .tablecomplex2 CSS
  • class in WHM.
  • Fixed case 79225: Update phantomjs to 1.9.2-2.cp1140.
  • Fixed case 79385: Update cPanel error message containers.
  • Fixed case 79461: Backport Mailman changes from untrusted restore.
  • Fixed case 79665: Backport of Cpanel::Cron* to 11.42.
  • Fixed case 79801: Fix missing navigation paths, icons not displayed,
  • mismatched page headers.
  • Fixed case 80077: Rewrite /scripts/fixmailman in perl.
  • Fixed case 80269: Fixed alignment issues in WHM pages.
  • Fixed case 80401: Fixed issues with form styles in pages using new
  • master template.
  • Fixed case 80601: Legacy error messages are double HTML encoded.
  • Fixed case 80653: /etc/pki/tls/certs/ca-bundle.crt not in jailshell.
  • Fixed case 80741: Changed WHM Nameserver IP Page to reduce confusion.
  • Fixed case 81061: Upgrade Horde 5 and PHP 5.4 to latest upstream versions.
  • Fixed case 81221: Securetmp forks and runs itself twice and makes /tmp
  • too small.
  • Fixed case 81249: Provides exit codes from AdminBin after refactor.
  • Fixed case 81285: Revert roundcubemail tarball to original v0.9.4.
  • Fixed case 81305: Enforce saving of pass in .my.cnf as 'password'.
  • Fixed case 81337: Add owner cache rebuild to change_users_owners.
  • Fixed case 81441: Exim unable to open DKIM private keys for reading.
  • Fixed case 81521: Prevent noisy over-quota warnings on cPanel main page.
  • Fixed case 81669: Fixed MySQL password spinner on Password Modification.
  • Fixed case 82257: Added required IDs to Modify account and package
  • upgrade.
  • Fixed case 82301: Fix module load problem with Configure Security
  • Policies.
  • Fixed case 82517: Fix errors when setting grants in MySQL with
  • skip-name-resolve enabled.
  • Fixed case 82629: Prevent use of invalid usernames when changing the
  • account name.
  • Fixed case 82645: counter.pl is missing Cpanel::Counters from merge
  • conflict resolution.
  • Fixed case 82881: Disallow user and group names that already exist on
  • the system.
  • Fixed case 82929: Improve the localization for cPanel front-end.
  • Fixed case 82965: Remove "modder.pl" which is no longer expected to be
  • in use.
  • Fixed case 82973: Allow hyphens to be part of MySQL database names.
  • Fixed case 83041: Fixed API2 filter after UAPI_inprocessing change.
  • Fixed case 83093: Make Munin and ClamAV always authorized in AppConfig.
  • Fixed case 83137: Update courier-authlib to 0.65.0-3.cp1136.
  • Fixed case 83157: Improved cPAddon uninstallation with shared DBs.
  • Fixed case 83265: Fix issues with the run-jshint script.
  • Fixed case 83297: Update cpanel-php54-Horde-Role to 1.0.1-2.cp1142.
  • Fixed case 83317: Ignore unknown backup config options.
  • Fixed case 83437: Ignore userphp files from EasyApache.
  • Fixed case 83441: Add warning notice about mixed content to HTML
  • Editor popup.
  • Fixed case 83465: iContact sends to root@hostname if no contact set.
  • Fixed case 83505: Fixed email quota bug introduced by list_lists.
  • Fixed case 83837: Use a cache and freeze the Cpanel::TempFile prefix name.
  • Fixed case 83933: Search Box was being removed if no results were found.
  • Fixed case 83969: Fix buildperl problem with use lib.
  • Fixed case 84101: Trim additional whitespace from certs and cabundles.
  • Fixed case 84105: Persist current shell settings during Modify Account.
  • Fixed case 84177: Fix "more »" locale string on MX Entry page.
  • Fixed case 84245: Exclude "Used with permission" associated with
  • "camel image" statement.
  • Fixed case 84365: Fix incomplete handling of ssladmin errors.
  • Fixed case 84457: Force php54 removal which switching to 11.40 branch.
  • Fixed case 84469: Log session destruction and remove C::S::Purge.
  • Fixed case 84553: Backport of Cpanel::Validate and enhancements.
  • Fixed case 84781: Refresh httpd conf datastore when update happens.
  • Fixed case 85149: Make generate_changelog honor reverts.
  • Fixed case 85153: Force DBD::mysql rebuilds if DBI is updated.
  • Fixed case 85189: Fix die() in do_as_current_user.
  • Fixed case 85225: Get correct IP information for some network setup.
  • Fixed case 85257: Email-related changes from Restricted Restore.
  • Fixed case 85345: Fix open_sans RPM entries in rpm.versions.
  • Fixed case 85381: Added backup to the cron config page.
  • Fixed case 85425: Use proper terminology for Apache SpamAssassin.
  • Fixed case 85561: Tighten TLD validation in CJT.
  • Fixed case 85709: ExpVar missing from rebuild-templates.
  • Fixed case 85853: Adjust @INC for killacct and wwwacct.
  • Fixed case 85901: Backport of /scripts from Restricted Restore.
  • Fixed case 86105: Port TT converter changes to paper_lantern (2/2).
  • Fixed case 86105: Port TT converter changes to paper_lantern (1/2).
  • Fixed case 86133: Remove deprecated option from from my.cnf-5.5.
  • Fixed case 86157: One time clear of jailshell mounts for mod_ruid2.
  • Fixed case 86253: Restored missing API calls to disable Apache SpamAssassin.
  • Fixed case 86413: Allow false values as strings in XLIFF when
  • rendering BN into XML.
  • Fixed case 86421: Fix use of output,abbr.
  • Fixed case 86441: Update phrase to new version.
  • Fixed case 86489: Fix display of details for blocked updates in WHM.
  • Fixed case 86553: Commenting out featurelist name validation for now.
  • Fixed case 86565: Fix substr outside of string error in file
  • transaction object.
  • Fixed case 86609: Show correct mountpoint in WHM disk usage.
  • Fixed case 86849: Fix JS problem with radio buttons on Modify an
  • Account page.
  • Fixed case 87057: Beautify JavaScript code in 11.42.
  • Fixed case 87065: Add SRV support to Softlayer dnsadmin module.
  • Fixed case 87201: Disable --nodigest for check_cpanel_rpms in make
  • sandbox when on CentOS 5.
  • Fixed case 87313: Fixed regression on SVG support.
  • Fixed case 87373: Remove leftover debug code.
  • Fixed case 87497: Provide default frame for legacy plugins.
  • Fixed case 87757: Correct paper_lantern image scaler template.
  • Implemented case 56108: Add ability to change the user name during
  • account restoration.
  • Implemented case 75273: Fix list quoting in cert generation landing
  • page, add new CLDR quoting methods.
  • Implemented case 76757: Removed phpMyAdmin version 2.x files and
  • code-paths.
  • Implemented case 78353: Fix button styles in WHM.
  • Implemented case 78449: Remove deprecated scripts from cPanel.
  • Implemented case 78565: Update cpanel-ckeditor to 4.2.1-2.cp1140.
  • Implemented case 78593: Add UI and API to set a Mailman list's privacy
  • opts from cPanel.
  • Implemented case 78609: Minor improvements to the editor improvements
  • project (sprint 5).
  • Implemented case 78893: Added quick-files and fresh-quick to Makefile.
  • Implemented case 78913: FTP-related improvements from Restricted Restore.
  • Implemented case 78917: Cpanel::Config* stuff from Restricted Restore.
  • Implemented case 79077: Made changes to button styles in WHM pages.
  • Implemented case 79229: Reduce complexity of AdminBin caching.
  • Implemented case 79233: Filesystem utils from Restricted Restore.
  • Implemented case 79621: Minor improvements to the editor improvements
  • project (sprint 6).
  • Implemented case 79673: Backport Cpanel::DKIM to 11.42.
  • Implemented case 79761: Remove un-needed script.
  • Implemented case 80605: Always prefer fchmod/fchown over chmod/chown
  • where available.
  • Implemented case 80609: Backport mysql changes from untrusted restore.
  • Implemented case 80621: Backport updated adminbins from untrusted restore.
  • Implemented case 80937: Add ability to use target attribute for WHM
  • plugins in AppConfig.
  • Implemented case 81057: Do not offer older cPAddons for installation.
  • Implemented case 81489: Latest updates to backup improvements.
  • Implemented case 81613: Refactor 75273, do disambiguation via
  • original, more ideal approach.
  • Implemented case 81677: Remove html entities from lang files.
  • Implemented case 82193: Add DomainInfo API calls.
  • Implemented case 82329: Add deprecation notice to Quotesafe TT plugin.
  • Implemented case 82389: Update locale queue.
  • Implemented case 82409: UAPI "in-processing", for optimized calls.
  • Implemented case 82633: Email-related improvements from Restricted
  • Restore.
  • Implemented case 82637: Port Cpanel::JailManager from restricted restore.
  • Implemented case 82897: Add a script to assist with running jshint.
  • Implemented case 82949: Update rpm.versions for Locale-Maketext-Utils
  • and others.
  • Implemented case 82981: Port Cpanel::Frontpage* to 11.42.
  • Implemented case 83049: Allow DBD::MySQL to use MariaDB for internal
  • comms.
  • Implemented case 83281: Allow merge_request to include documentation info.
  • Implemented case 83593: Update cpanel-php54 to 5.4.19-3.cp1142.
  • Implemented case 83593: Update cpanel-php54 to 5.4.19-2.cp1142.
  • Implemented case 83661: Add Twitter Bootstrap RPM to the build.
  • Implemented case 83733: Update cpanel-bootstrap to 3.0.2-3.cp1142.
  • Implemented case 84221: Partial revert of problematic BinCheck code.
  • Implemented case 84373: Add es_419 locale support.
  • Implemented case 85673: Update cpanel-php54 to 5.4.23-1.cp1142.
  • Implemented case 85833: Disallow use of Paper Lantern in theme editors.
  • Implemented case 85857: Backport one line makethis_base object
  • semantics fix.
  • Implemented case 85865: Adjust various configuration settings for 11.42.
  • Implemented case 85921: Improvements to Paper Lantern.
  • Implemented case 85925: CPanel to TT Converter.
  • Implemented case 85953: Support for upgrading to MySQL 5.6.
  • Implemented case 86229: Integrate posts from cpanel.net news feeds
  • into WHM News display.
  • Implemented case 86497: Add list_and_quoted() and list_or_quoted() BN
  • methods.