-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 SUMMARY cPanel, Inc. has released EasyApache 3.30.3 with PHP versions 5.4.43, 5.5.27, and 5.6.11. This release addresses vulnerabilities related to CVE-2015-3152. We strongly encourage all PHP 5.4 users to upgrade to version 5.4.43, all PHP 5.5 users to version 5.5.27, and all PHP 5.6 users to upgrade to version 5.6.11. AFFECTED VERSIONS All versions of PHP 5.4 through version 5.4.42 All versions of PHP 5.5 through version 5.5.26 All versions of PHP 5.6 through version 5.6.10 SECURITY RATING The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs: CVE-2015-3152 - MEDIUM PHP 5.4.43 Fixed bug in mysqlnd library related to CVE-2015-3152 PHP 5.5.27 Fixed bug in mysqlnd library related to CVE-2015-3152 PHP 5.6.11 Fixed bug in mysqlnd library related to CVE-2015-3152 SOLUTION cPanel, Inc. has released EasyApache 3.30.3 with updated versions of PHP 5.4.43, PHP 5.5.27, and PHP 5.6.11. Unless you have disabled EasyApache updates, EasyApache updates automatically. Run EasyApache to rebuild your profile with the latest version of PHP. REFERENCES https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3152 http://php.net/ChangeLog-5.php -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org iQIcBAEBCgAGBQJVoAnJAAoJEJUhvtyr2U3f+0sP/ju0o5GfUeRTN4Iy1b//EqRR XbDvs3A/6ymlcyo/b8mQpUyqEVKxa40vvKNkau9MJmdKWh0tjN5xUA23NiRW9z1x 25Uze5NetQIakdxDtqDzGDNusdnhXqzmAv6/jMKBDH51j3oQYLgAafXE36MGEqGl BLktft7TvuWM/le4q9x9RYuhOsKzvWH1at0RwvIMjrgpZWLymkJSBd0ehRNOIm6M JxH41zvouMHXmqunkGG94sO7x9K/Li3mte9IZD07rMTYYvoS6uFTsGRoOY0MEzds Vl6H2oZpSGeMKR86+yME17Nlf54kOBGqO/6goY503xs5NKrOESMI1ymHD9wr4Xiv gv8V3yFMrYNulDAleCpozMVyIw4TYEuD4O6XjGS+kwUGKzCKXbFiuEsdF3FTyaFG MbD5c6ZvERauOgUXnAEiaMzwUonE9yRPixpGT383SSg0dJOZ6KM2kp8mOVejNWkP yrUSzin426ffZPozMvQg9AzORJaPZyMHl/aILeNO7jYoCosRgr6hcWyq3RJECaTu JIZ7c/lHOs2E7oJwLTRqld5NAgW66lq4faGEd6yeorXmQZvswtRy1H5v6uoymuKW 8KFClhEp7gJrlEl5SfRoLF8jCnOdj031rnrQcROG3qfhR5fpwQ7MnNI5HSo3y9ex X2REcWXsmX1dWyT3IZXt =oDS7 -----END PGP SIGNATURE-----