-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

SUMMARY
cPanel, Inc. has released updated RPMs for EasyApache 4 on June 29, 2016, with PHP version 5.5.37. This release addresses vulnerabilities related to CVE-2015-8874. We strongly encourage all PHP 5.5 users to upgrade to version 5.5.37.
 
AFFECTED VERSIONS

All versions of PHP 5.5 through version 5.5.36
 
SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:
 
CVE-2015-8874 - HIGH
PHP 5.5.37
Fixed bug in the GD module related to CVE-2015-8874

SOLUTION
cPanel, Inc. has released updated RPMs for EasyApache 4 on June 28, 2016, with an updated version of PHP 5.5.37. Unless you have enabled automatic RPM updates in your cron, update your system with either yum update or WHM's Run System Update interface.
 
REFERENCES
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8874
http://php.net/ChangeLog-5.php
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - https://gpgtools.org

iQIcBAEBCgAGBQJXdDeaAAoJEJUhvtyr2U3fWQAP/jf5Q4Ia3M2kC05LgTU8fbtn
kkOCQ3sxYmxsvAMZPCvsb9fe/7GuuVps2GsJvJW22QlBA4xcv3UuNzgGxJ9bueWr
ftf3B6fwq4htjj0EYp7MLSzyZjFyB1dyj7RWYbkjC+z2+pM8B6zWanaViiufhFJ/
4NNIKT/Sn9ET9++053LuGcg0jEeKOIMPITmNh2D69uU2g3u0KfSsia0SsLYl/jkY
yI50Jd3Xkj/Ij6BDaU0EEVX5bTNbKZEyBqeGd0SA0wWayQaC+7qwmcGIqZeoiWyP
e7JNpJ/juUrnLmToDFnwlqaHgfi9L3x99IgvW6p7Kk1AsJmDYB5e1fVkK0Ozp6Mz
zgiRLNbT7Oe2Fq/Vnmm1j6cbP9QIo30EdOSHFqVCjihdG1ZBXrFkXmzgvTTtFDaF
Tm+w6RxI7LQCCKV4c/XCOjetmKyM19sW8W/InWODjAYDitVzmywRbJaLoiqV2PRq
kJzdFtJdErxsXLUvc6Y+1zL86X3MnWDujxFmZmp33neg0ZSxzhwwVKCztJDvtHbQ
JiuN3ab4LW1jHqFbGnVxmcDj/Bx8Pf0lXeM54HUanMC3YpcQO7CDTYDZ74a5PxBD
hJkpxszz8qgqICGGCjC+LsJyDWqOnR60y4vtvHMW+Vqpp2kZcPVJ5tLOf7FQ26uM
FtDb/p9qQfAgl2Otdkuv
=956B
-----END PGP SIGNATURE-----