Archive for December, 2010
cPanel : UPCP error : Undefined subroutine &Cpanel::Update::automatic_updates_enabled called at /scripts/upcp line 273.
by dino on Dec.28, 2010, under cPanel
I have seen recent cPanel upgrade throwing errors are below :
root@server [~]# /scripts/upcp
/scripts/upcp syntax OK
Running Futex Check/Fix……Done
Undefined subroutine &Cpanel::Update::automatic_updates_enabled called at /scripts/upcp line 273.
This can be fixed using below :
wget -O /root/updatenow.static http://httpupdate.cpanel.net/cpanelsync/RELEASE/scripts/updatenow.static && perl /root/updatenow.static --manual
Upgrade the cPanel :
/scripts/upcp --force
This should fix the issue 
MySQL error ./eximstats/sends’ is marked as crashed
by dino on Dec.23, 2010, under cPanel
MySQL dies and logs shows error as below :
[ERROR] /usr/sbin/mysqld: Table './eximstats/sends' is marked as crashed and last (automatic?) repair failed
[ERROR] /usr/sbin/mysqld: Table './eximstats/sends' is marked as crashed and last (automatic?) repair failed
A simple fix is to repair the tables using command :
myisamchk -r /var/lib/mysql/eximstats/sends.MYI
- recovering (with sort) MyISAM-table '/var/lib/mysql/eximstats/sends.MYI'
Data records: 1292
- Fixing index 1
- Fixing index 2
- Fixing index 3
Data records: 3265
All should be good.
Exim Remote Memory Corruption Vulnerability Notification (CVE-2010-4344)
by dino on Dec.11, 2010, under cPanel
Summary
A memory corruption vulnerability exists in Exim versions 4.69 and older (CVE-2010-4344). Exim is the mail transfer agent used by cPanel & WHM.
Security Rating
This update has been rated as Important by the cPanel Security team.
Description
A memory corruption vulnerability has been discovered in Exim. This vulnerability may lead to arbitrary code execution with the privileges of the user executing the Exim daemon. cPanel previously released RPMs that mitigated the severity of the vulnerability on December 9, 2010 (CVE-2010-4345). This notification is for the release of new RPMs which remove the remote memory corruption vulnerability in its entirety. The vulnerability relies upon “rejected_header” being enabled (default setting) in the log_selector configuration.
Solution
To resolve and work around the issue on Linux systems, cPanel has issued new Exim RPMs. Server Owners are strongly urged to upgrade to the following Exim RPM versions:
Systems configured to use Maildir: Exim 4.69-26
Systems configured to use mbox (deprecated): Exim 4.63-5
Exim RPMs will be distributed through cPanel’s package management system. All cPanel & WHM servers receiving updates automatically will receive the updated Exim RPM during normal update and maintenance operations (upcp). To begin an Exim update on cPanel systems immediately, run the following command as root:
/scripts/eximup
FreeBSD systems should be running Exim 4.72 by default, which is not affected by this issue.
FAQ
This notification covers CVE-2010-4344.
The notification release earlier on December 10, 2010 with the summary “A privilege escalation vulnerability exists in Exim, the mail transfer agent used by cPanel & WHM.” covers CVE-2010-4345. At the time of the earlier announcement, the CVE had not been assigned.
-
Howdy. Welcome to LinuxBabu ...........!
Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed. See ya around!
