-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

SUMMARY

WebPros International, LLC has updated packages for EasyApache 4 with an updated version of Tomcat. This release addresses vulnerabilities related to CVE-2025-48976, CVE-2025-48988, CVE-2025-49125, and CVE-2025-49124. We strongly encourage all Tomcat users to update to version 10.1.42.

 
AFFECTED VERSIONS
All versions of Tomcat through 10.1.41.


SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:

CVE-2025-48976 - MEDIUM
Tomcat 10.1.42
Fixed vulnerability related to CVE-2025-48976.

CVE-2025-48988 - MEDIUM
Tomcat 10.1.42
Fixed vulnerability related to CVE-2025-48988.

CVE-2025-49125 - MEDIUM
Tomcat 10.1.42
Fixed vulnerability related to CVE-2025-49125.

CVE-2025-49124 - MEDIUM
Tomcat 10.1.42
Fixed vulnerability related to CVE-2025-49124.



SOLUTION
WebPros International, LLC has released updated packages for EasyApache 4 25.20 on 2025 June 18, with Tomcat version 10.1.42. Unless you have enabled automatic package updates in your cron, update your system with either your package manager or WHM's Run System Update interface.

 
REFERENCES
https://www.cve.org/CVERecord?id=CVE-2025-48976
https://www.cve.org/CVERecord?id=CVE-2025-48988
https://www.cve.org/CVERecord?id=CVE-2025-49125
https://www.cve.org/CVERecord?id=CVE-2025-49124
https://tomcat.apache.org/tomcat-10.1-doc/changelog.html

-----BEGIN PGP SIGNATURE-----
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=AfW8
-----END PGP SIGNATURE-----