RSS

#HardenedPHP

by / Friday, 24 June 2016
PHP 5.3? CVE 2015-6835 ... what a mess
Even though PHP 5.3 & 5.4 are still considered supported on CentOS -- sometimes it takes forever for CentOS/RHEL to fix a bug in there. CVE 2015-6835 is a perfect example. This particular bug came out of nowhere (well, people knew it was a bug, but they didn’t realize it was a huge security...

Continue reading

Topic: in CloudLinux OS Blog


by / Friday, 24 June 2016
HardenedPHP updated

The latest updated HardenedPHP packages are available from our production repository.

Changelog:

alt-php51-5.1.6-56

alt-php52-5.2.17-83

alt-php53-5.3.29-33

  • CVE-2015-6835: use after free vulnerability in session deserializer;
  • Security bug 65481: shutdown segfault due to serialize.

To install...

Continue reading

Topic: in CloudLinux OS Blog


by / Thursday, 23 June 2016
Beta: HardenedPHP updated

New updated HardenedPHP packages are available from our updates-testing repository.

Changelog:

alt-php51-5.1.6-56

alt-php52-5.2.17-83

alt-php53-5.3.29-33

  • CVE-2015-6835: use after free vulnerability in session deserializer;
  • Security bug 65481: shutdown segfault due to serialize.

To install run...

Continue reading

Topic: in CloudLinux OS Blog


by / Tuesday, 07 June 2016
HardenedPHP updated

New updated HardenedPHP packages are available from our production repository.

Changelog:

alt-php54-5.4.45-17

Continue reading

Topic: in CloudLinux OS Blog


by / Tuesday, 31 May 2016
Beta: HardenedPHP updated

New updated HardenedPHP packages are available from our updates-testing repository.

Changelog:

alt-php54-5.4.45-17

Continue reading

Topic: in CloudLinux OS Blog


by / Thursday, 19 May 2016
What’s inside HardenedPHP and why it matters for server security

It’s been more than a year since we started our HardenedPHP project. The idea came out of discussions with multiple hosters who expressed their worry about running outdated versions of PHP. While their servers were secured with CageFS, they were still worried that hackers could have a field...

Continue reading

Topic: in CloudLinux OS Blog


by / Wednesday, 18 May 2016
HardenedPHP and Alt-PHP updated

New updated HardenedPHP and Alt-PHP packages are available from our production repository.

Changelog:

alt-php54-5.4.45-16

  • security bug 72099: xml_parse_into_struct segmentation fault (CVE-2016-4539);

  • security bug 72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset...

Continue reading

Topic: in CloudLinux OS Blog


by / Wednesday, 11 May 2016
Beta: HardenedPHP updated

New updated HardenedPHP packages are available from our updates-testing repository.

Changelog:

alt-php54-5.4.45-15

  • security bug 72099: xml_parse_into_struct segmentation fault (CVE-2016-4539);

  • security bug 72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset...

Continue reading

Topic: in CloudLinux OS Blog


by / Thursday, 21 April 2016
HardenedPHP - another day, another security fix

Older versions of PHP are like swiss cheese - they are full of holes. More and more known holes appear with every passing day for PHP version 5.4 and older … holes that no one patches. This is where HardenedPHP comes in - it patches those holes so that your servers can remain secure.

On Mar...

Continue reading

Topic: in CloudLinux OS Blog


by / Tuesday, 06 September 2016
CageFS and liblve updated

New updated CageFS along with liblve packages are available from our production repository.

Changelog:

cagefs-5.5-6.39.2

liblve-1.4-1.8

  • LIBLVE-20: preventing symlink attack while mounting directories in ~/.cagefs;
  • CAG-596: increased buffer for getgroups() function.

To update run:

yum update...

Continue reading

Topic: in CloudLinux OS Blog


1 2 3 4 5 6