-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 SUMMARY cPanel, L.L.C. has updated RPMs for EasyApache 4 with PHP versions 7.2.27 and 7.3.14. This release addresses vulnerabilities related to CVE-2020-7060 and CVE-2020-7059. We strongly encourage all PHP 7.2 users to upgrade to version 7.2.27 and all PHP 7.3 users to upgrade to version 7.3.14. AFFECTED VERSIONS All versions of PHP through 7.2.26 All versions of PHP through 7.3.13 SECURITY RATING The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs: CVE-2020-7060 - MEDIUM PHP 7.2.27 Fixed bug related to CVE-2020-7060 PHP 7.3.13 Fixed bug related to CVE-2020-7060 CVE-2020-7059 PHP 7.2.27 Fixed bug related to CVE-2020-7059 PHP 7.3.14 Fixed bug related to CVE-2020-7059 SOLUTION cPanel, L.L.C. has released updated RPMs for EasyApache 4 on January 29th, 2020, with updated versions of PHP versions 7.2.27 and 7.3.14. Unless you have enabled automatic RPM updates in your cron, update your system with either yum update or WHM's Run System Update interface. REFERENCES https://nvd.nist.gov/vuln/detail/CVE-2020-7060 https://nvd.nist.gov/vuln/detail/CVE-2020-7059 https://www.php.net/ChangeLog-7.php -----BEGIN PGP SIGNATURE----- iQJIBAEBCgAyFiEEtnCbTMb0IHf2mEGRlSG+3KvZTd8FAl4xwrMUHHNlY3VyaXR5 QGNwYW5lbC5uZXQACgkQlSG+3KvZTd/oTxAAvGc0AYqtstR6gNb0yYfWbmkm1jB1 2z0QZqob9EQWKkmedz+71PwwnE2mGJw3jxaCENrX3JZ5aC5Z/yNtrkA9+AqRPc49 ZBMhgiDi0wj497Y7ak3ngIXRU/74TB3mC8y9BvYRffoNSLqZFi13zgcUBwjFSnwh 9+mQb6aaRcnbNIVRuMjb7XYFMlP3n9aAJIbbWeU0t3Byo2I02C83twAA0augdcHu QNRaIraKuqTBst/1urw8G5P6IJ5DcnW6mslgfjbek4hM6/iPk9j8qmz9ldKs1qRM 7DbrmWrVGLf4gAc4vTdGUKzv1dVKs99JztZG9lPod6gcEjtH0hHqrHc5L7KWUuDk xcGnQXohWtSRPsSqfNay/oYRlJ+iZ0YUxdm30v/7UVUkaK2msKenY+jnax2T8O/1 aJpOqWeOxidzWKnAFoCiRMhApQ7nQJrZI8vcT1nN7bQ4oSiPXQVtYlBDYBDvNTr/ U3JKMpwxP+1XQkavSa5kl41ezjCOrx2t7zdIQiMHCaMiq0kJBdscJNGGjDXfTCZE i5hfHxmHQN1l28ufmGX6RoJIS36HPOfgiUyEj7lltypvwr6FFDvU/ip0fg/Vtw0P o3tl8ckMCrwut/tp6KoQfjum74RtxtO2nYuH9zO/Y3rKgQOC2lNnp7c3mbK8Wx6v siIdkE3OoeuBbtc= =r/N5 -----END PGP SIGNATURE-----