Server Software Update Notification: 07-14-2012

This notice contains information for the group of server updates (or dist) occurring July 16, 2012 through July 18, 2012 in all datacenters. Until that time, all of the information included in this document is subject to change.

Important updates in this Notification:

The following updates affect popular or important services and programs:

• PHP5.3 (Linux, v3)
• PHP5.2 (v3)
• PHP4 (v3)
• Wordpress (Linux, v3)
• ClamAV (Linux, v3)
• Apache2 (v3)
• ProFTP (v3)
• Perl (v3)
• OpenSSL (v3)

Linux MPS/VPS

The following updates will be made to the Linux VPS/MPS platform.

Important services to be restarted:

The following services will be restarted by Verio as part of the update:

• clamd (ClamAV)
• httpd (Apache)
• vsapd (CPX)

Possible Action Needed

The following Linux VPS/MPS updates may require additional attention or action to take advantage of the full benefits of the update. Any possible actions are listed at the end of the individual update information.

PHP-5.3.13

The vinstall for PHP5 will be upgraded to version 5.3.13.

To upgrade existing installations of PHP5, connect to your server through SSH and execute the following from the command prompt:

# vinstall php5.3

Wordpress-3.3.0

The vinstall for Wordpress will be upgraded to version 3.3.0.

To upgrade existing installations of Wordpress, connect to your server through SSH and execute the following from the command prompt:

# vinstall wordpress

No Action Needed

The following Linux VPS/MPS updates do not require action by customers to take advantage of the full benefits of the update. Some services may be rebooted as part of the update.

ClamAV-0.97.4

ClamAV will be upgraded to version 0.97.4. Additionally, the ClamAV DB will be updated.

restart_sendmail

The restart_sendmail script will be updated to use the “service” command to properly restart sendmail.

pgsql DB directory

Currently, the pgsql DB directory exists in the /skel directory for new accounts. Upon installing pgsql, a message appears stating that a database is already installed. The pgsql DB directory will be removed from /skel which will stop the message from appearing on new installations.

Urchin license

A licensing issue was occurring when Urchin5 was installed, uninstalled, and then reinstalled. This update will correct the issue. In addition, enhancements will be made to the Urchin serial number generation.

CPX – Webmail

A problem was occurring where emails received using Chinese encoding 'GB18030' did not display correctly. CPX will now support Simplified Chinese Character Encoding GB18030.

vquota

vquota will be updated to no longer display line numbers when an error is given.

SSL Cert (auto-renewals)

An issue was occurring where apache would stop running due to a duplicate Virtual Host entry being added to the httpd.conf file when an SSL certificate is auto-renewed. This update will correct the issue.

Carchive

Carchive will be updated to log its output to /var/lovg/Carchive.log (in addition to emailing the output as before) and be "non-reentrant" (meaning if /var/log/Carchive.log exists, Carchive will exit without doing anything).

FreeBSD MPS/VPS v3

The following updates will be made to the FreeBSD VPS/MPS v3 platform.

Important services to be restarted:

The following services will be restarted by Verio as part of the update:

• clamd (ClamAV)
• spamd (Spamassassin)
• named
• httpd (Apache)
• vsapd (CPX)
• sshd (SSH)

Possible Action Needed

The following VPS/MPS v3 updates may require additional attention or action to take advantage of the full benefits of the update. Any possible actions are listed at the end of the individual update information.

MySQL-5.5.25

The vinstall for MySQL5.5 will be upgraded to version 5.5.24.

To upgrade existing installations of MySQL5.5, connect to your server through SSH and execute the following from the command prompt:

# vinstall mysql5.5

MySQL-5.1.63

The vinstall for MySQL5.1 will be upgraded to version 5.1.63.

To upgrade existing installations of MySQL5.1, connect to your server through SSH and execute the following from the command prompt:

# vinstall mysql5.1

PHP-5.3.13

The vinstall for PHP5.3 will be upgraded to version 5.3.13. Additionally, if you are running a version older than 5.3.10, you will automatically be upgraded to version 5.3.10 in order for your account to continue functioning properly due to the OpenSSL version upgrade. Accounts currently running PHP-5.3.10 will NOT automatically be upgraded and will continue to be supported.

To manually upgrade existing installations of PHP5.3, connect to your server through SSH and execute the following from the command prompt:

# vinstall php5.3

Wordpress-3.3.0

The vinstall for Wordpress will be upgraded to version 3.3.0.

To upgrade existing installations of Wordpress, connect to your server through SSH and execute the following from the command prompt:

# vinstall wordpress

No Action Needed

The following VPS/MPS v3 updates do not require action by customers to take advantage of the full benefits of the update. Some services may be rebooted as part of the update.

PHP-5.2.17

PHP-5.2.17 will be rebuilt to work with the updated OpenSSL version. If you are running a version older than 5.2.17 you will automatically be upgraded to version 5.2.17 in order for your account to continue functioning. In addition, older versions of PHP5.2 will be removed and no longer available for installation.

PHP-4.4.9

PHP-4.4.9 will be rebuilt to work with the upgraded OpenSSL version. If you are running a version older than 4.4.9 you will automatically be upgraded to version 4.4.9 in order for your account to continue functioning. In addition, older insecure versions of PHP4 will be removed and no longer available for installation.

OpenSSL-1.0.1c

OpenSSL will be upgraded to version 1.0.1c.

Apache-2.2.22

Apache will be upgraded to version 2.2.22.

Proftpd-1.3.4a_2

ProFTP will be upgraded to version 1.3.4a_2.

ClamAV-0.97.4

ClamAV will be upgraded to version 0.97.4. Additionally, the ClamAV DB will be updated.

Perl-5.8.9_7

Perl will be upgraded to version 5.8.9_7.

SSL Cert (auto-renewals)

An issue was occurring where apache would stop running due to a duplicate Virtual Host entry being added to the httpd.conf file when an SSL certificate is auto-renewed. This update will correct the issue.

CPX – Monitor Services

The Monitor Services feature in CPX will be upgraded to correct the following issues:

• Sendmail not restarting when automatic restart is selected.
• The server reboot notification not being sent when an account reboots.

CPX – Webmail

A problem was occurring where emails received using Chinese encoding 'GB18030' did not display correctly. CPX will now support Simplified Chinese Character Encoding GB18030.

BIND 9.6-ESV-R5

BIND will be upgraded to version 9.6-ESV-R5 to address the security vulnerability (CVE-2011-4313) discussed here:

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4313

Carchive

Carchive will be updated to log its output to /var/lovg/Carchive.log (in addition to emailing the output as before) and be "non-reentrant" (meaning if /var/log/Carchive.log exists, Carchive will exit without doing anything).

Urchin - Serial Number Generation

Enhancements will be made to the Urchin serial number generation.

apr-devrandom-gdbm-db42-1.4.5.1.3.12_1

The apr-devrandom-gdbm-db42-1.4.5.1.3.12_1 package will be added.

aspell-without-dicten-0.60.6.1_1

Aspell without dicten will be upgraded to version 0.60.6.1_1.

bash-4.2.24_1

bash will be upgraded to version 4.2.24_1.

bison-2.5,1

bison will be upgraded to version 2.5,1.

ca_root_nss-3.13.4

ca_root_nss will be upgraded to version 3.13.4.

cdialog-1.1.20111020,1

cdialog will be upgraded to cdialog-1.1.20111020,1.

cURL-7.24.0

cURL will be upgraded to version 7.24.0.

cyrus-sasl-2.1.25_2

cyrus-sasl will be upgraded to version 2.1.25_2.

dmxproto-2.3.1

dmxproto will be upgraded to version 2.3.1.

e2fsprogs-libuuid-1.42.

e2fsprogs will be upgraded to e2fsprogs-libuuid-1.42.2.

emacs-nox11-23.4_8,2

emacs will be upgraded to version nox11-23.4_8,2.

fftw3-3.3.1

fftw3 will be upgraded to version 3.3.1.

FreeType2-2.4.9_1

FreeType2 will be upgraded to version 2.4.9_1.

fontconfig-2.8.0_2,1

fontconfig will be upgraded to version 2.8.0_2,1.

gawk-4.0.1

gawk will be upgraded to version 4.0.1.

glib-2.28.8_4

glib will be upgraded to version 2.28.8_4.

gio-fam-backend-2.28.8_1

gio-fam-backend will be upgraded to gio-fam-backend-2.28.8_1.

gmp-5.0.4

gmp will be upgraded to version 5.0.4.

gnupg-2.0.19

gnupg will be upgraded to version 2.0.19.

help2man-1.40.9

help2man will be upgraded to version 1.40.9.

ImageMagick-nox11-6.7.5.10

ImageMagick will be upgraded to version 6.7.5.10.

ja-nkf-2.1.3,1

ja-nkf will be updated to version 2.1.3,1.

jasper-1.900.1_10

jasper will be upgraded to version 1.900.1_10.

ksh93-20120229

ksh will be upgraded to ksh93-20120229.

lcms2-2.3

lcms2 will be upgraded to version 2.3.

lftp-4.3.6

lftp will be upgraded to version 4.3.6.

libfpx-1.2.0.12_2

libfpx will be upgraded to version 1.2.0.12_2.

libiconv-1.14

libiconv will be upgraded to version 1.14.

libltdl-2.4.2

libltdl will be upgraded to 2.4.2.

libtool-2.4.2

libtool will be updated to version 2.4.2.

libslang2-2.2.4_1

libslang2 will be upgraded to 2.2.4_1.

libssh2-1.4.1,2

libssh2 will be upgraded to version 1.4.1,2.

libXaw-1.0.9,2

libXaw will be upgraded to version 1.0.9,2.

libXi-1.4.5,1

libXi will be upgraded to version 1.4.5,1.

libXfont-1.4.4_1,1

libXfont will be upgraded to version 1.4.4_1,1.

libxml2-2.7.8_2

libxml2 will be upgraded to version 2.7.8_2.

libXt-1.1.1,1

libXt will be upgraded to version 1.1.1,1.

lrzsz-0.12.20_4

The lrzsz package will be updated to version 0.12.20_4.

lsof-4.86,7

The lsof-4.86,7 package will be added.

lua-5.1.5_4

lua will be upgraded to version 5.1.5_4.

luit-1.1.0_1

luit will be upgraded to version 1.1.0_1.

lv-4.51_1

lv will be upgraded to version 4.51_1.

mime-support-3.52.1

mime-support will be updated to version 3.52.1.

mpfr-3.1.0_2

mpfr will be upgraded to version 3.1.0_2.

mutt-devel-1.5.21_4

mutt-devel will be updated to version 1.5.21_4.

ncftp-3.2.5

ncftp will be upgraded to version 3.2.5.

neon29-0.29.6_4

The neon29-0.29.6_4 package will be added.

netpbm-10.35.84

netpbm will be upgraded to version 10.35.84.

openldap-sasl-client-2.4.31_1

openldap-sasl-client will be upgraded to version 2.4.31_1.

Perl Modules

The following Perl modules will be upgraded.

ja-p5-Encode-EUCJPMS-0.07_2
ja-p5-nkf-2.1.2,1
p5-Archive-Tar-1.84
p5-Attribute-Handlers-0.93
p5-Authen-NTLM-1.09
p5-Compress-Raw-Bzip2-2.052
p5-Compress-Raw-Lzma-2.052
p5-Compress-Raw-Zlib-2.052
p5-CPAN-Meta-2.120921
p5-CPAN-Meta-YAML-0.008
p5-Date-Manip-6.31
p5-DBI-1.620
p5-Digest-HMAC-1.03
p5-Digest-SHA-5.71
p5-Encode-Locale-1.03
p5-Error-0.17017
p5-ExtUtils-CBuilder-0.2802.05,1
p5-ExtUtils-MakeMaker-6.62
p5-ExtUtils-ParseXS-3.07
p5-File-Listing-6.04
p5-GDBM-1.14_2
p5-HTTP-Cookies-6.01
p5-HTTP-Daemon-6.01
p5-HTTP-Date-6.02
p5-HTTP-Message-6.03_1
p5-HTTP-Negotiate-6.01
p5-HTML-Parser-3.69
p5-HTML-Tagset-3.20
p5-IO-Compress-2.052
p5-IO-Socket-INET6-2.69
p5-IO-Socket-SSL-1.66
p5-IPC-Run-0.91
p5-JSON-PP-2.27200_1
p5-libwww-6.04
p5-Log-Dispatch-2.29_2 – module added.
p5-LWP-MediaTypes-6.02
p5-LWP-Protocol-https-6.03
p5-Mail-SpamAssassin-3.3.2_6
p5-Mail-Sendmail-0.79
p5-Mail-Tools-2.09
p5-Module-Build-0.4000 - Module added.
p5-Module-Implementation-0.06
p5-Module-Runtime-0.013
p5-Mozilla-CA-20120309
p5-Module-CoreList-2.61
p5-Module-Load-Conditional-0.50
p5-Module-Metadata-1.000009
p5-Net-1.22_2,1
p5-NetAddr-IP-4.058
p5-Net-DNS-0.68
p5-Net-HTTP-6.03_1
p5-Net-SSLeay-1.48
p5-Params-Check-0.36
p5-Params-Validate-1.06
p5-Parse-CPAN-Meta-1.44.03
p5-Pod-Coverage-0.22
p5-Quota-1.6.7
p5-RPC-XML-0.76
p5-Scalar-List-Utils-1.25,1
p5-subversion-1.7.4_1
p5-Try-Tiny-0.11
p5-URI-1.60
p5-version-0.99
p5-WWW-RobotRules-6.02
p5-XML-LibXML-1.96,1
p5-XML-LibXSLT-1.77
p5-XML-Parser-2.41
p5-YAML-0.77
p5-YAML-Syck-1.19
p5-YAML-Tiny-1.51

pixman-0.24.2

pixman will be upgraded to version 0.24.2.

png-1.4.11

png will be updated to version 1.4.11.

portupgrade-devel-20120501,3

portupgrade-devel will upgraded to portupgrade-devel-20120501,3.

Python25-2.5.6_3

Python will be upgraded to version 25-2.5.6_3.

ruby18-gems1.8.11

The ruby18-gems-1.8.11 package will be added.

ruby18-iconv-1.8.7.358,1

The ruby18-iconv-1.8.7.358,1 package will be added.

ruby+nopthreads-1.8.7.358,1

ruby+nopthreads will be upgraded to version 1.8.7.358,1.

sqlite3-3.7.11

sqlite will be upgraded to version 3-3.7.11.

sudo-1.8.4_1

sudo will be upgraded to version 1.8.4_1.

tiff-4.0.1_1

tiff will be upgraded to version 4.0.1_1.

unrar-4.10_2,5

unrar will be upgraded to version 4.10_2,5.

vim-lite-7.3.502

vim-lite will be upgraded to version 7.3.502.

xcb-proto-1.7

xcb-proto will be upgraded to version 1.7.

xterm-278

xterm will be upgraded to version 278.

zsh-4.3.17_1

zsh will 4.3.17_1.

zoo-2.10.1_3

zoo will be updated to version 2.10.1_3.

Note: This notification reflects the best knowledge of code and feature updates for this release. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.