Due to networking problems with cPanel’s mirrors, many cPanel & WHM systems did not auto-update for TSR-2015-0004. cPanel is delaying the release of vulnerability details for an additional 24 hours to allow these systems time to update. Details about the vulnerabilities fixed in TSR-2015-0004 will be released on 22 July 2015.
For additional information about TSR-2015-0004, please read cPanel’s initial TSR announcement at:
For the PGP-Signed version, go here: http://news.cpanel.com/wp-content/uploads/2015/07/TSR-2015-0004-Disclosure-Delay.txt