-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 SUMMARY cPanel, Inc. has released EasyApache 3.34.8 with PHP version 5.6.28. This release addresses vulnerabilities related to CVE-2016-8670. We strongly encourage all PHP 5.6 users to upgrade to version 5.6.28. AFFECTED VERSIONS All versions of PHP 5.6 through version 5.6.27 SECURITY RATING The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs: CVE-2016-8670 - HIGH PHP 5.6.28 Fixed bug in GD module related to CVE-2016-7568 SOLUTION cPanel, Inc. has released EasyApache 3.34.8 with an updated version of PHP 5.6.28. Unless you have disabled EasyApache updates, the EasyApache application updates to the latest version when launched. Run EasyApache to rebuild your profile with the latest version of PHP. REFERENCES https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8670 http://php.net/ChangeLog-5.php -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org iQIcBAEBCgAGBQJYKywHAAoJEJUhvtyr2U3fuv4P/RkarENJ4E226GxhLqMwAZk4 hh8V3l619V6RB4at30wgaPgz2+tN+RCpBcLT6cU5qNL7ccd3xXGTcZuQoZ7escVY aK2MpNyJPZTWDuCi6AZ+0qrNkusUEIU6AZKRfp4WjDT3KcNqLnBNUcuHiP2beSb3 W51hjoA3+gTMMmLqIpbtLw5eBw/MJ/U/MzdwRHFtqT9rIbLS53SuhG24yOZ62WX6 MqnrY3SLIIoH64bOYgsYrpRsNvawXG8S+wABMIImaK7a432Vk1EFt9T5wdNG6N2R Usr4H1hwnNPekNYKMSLJcjHgbrJoxTs9lmPcyABe1Kdd5207pddhyizsv/6oc/GV XyQQb8eQD5PqH4XpxPAMVeUF19R/KJeXSfOtFOv6kJFU0oznEqET9dqPH+0e1owu YAD62v9L1FWT5mUnxi+oFrW8hbOvSG0pJOcZgyxLzmAZY1plt0ulzbnzROOY/qU5 Lj0e15TXK8lL3bx7bg2MTH0Pz2rHBujqEn8ZwVEJ+aJ12lCwFsDoPuXTgeTjXXvy W1aNYCXaBJ2rZgzsdjSnI2CfCmNUbyrZH+JBFEmnuz1vA2zRbEM00HRSkBTzgDb2 LDUDsKmmuqiQ0WP4L+rvrL9udnbXmnHYCSCMgyyeg3wmP8Dugf9rzUVmuvoscrHp 5X9dhx/zocICNTgHJ/On =gLj+ -----END PGP SIGNATURE-----