Server Software Update Notification: 11-09-2011

Important updates in this Notification:

The following updates affect popular or important services and programs:

• MySQL (v3)
• ClamAV (v3)
• Spamassassin (v3)
• Apache (v3)
• Sendmail (v3)
• phpMyAdmin (v3)
• OpenSSH (v3)
• OpenSSL (Sig)

FreeBSD MPS/VPS v3

This document contains information for the group of server updates (or dist) occurring November 07, 2011 through November 09, 2011 in all datacenters. Until that time, all of the information included in this document is subject to change.

The following updates will be made to the FreeBSD VPS/MPS v3 platform.

Important services to be restarted:

The following services will be restarted by Verio as part of the update:

• apache
• clamav
• spamd
• sshd
• sendmail
• runaway_watcher

Possible Action Needed

The following VPS/MPS v3 updates may require additional attention or action to take advantage of the full benefits of the update. Any possible actions are listed at the end of the individual update information.

MySQL-5.5.15

The vinstall for MySQL5.5 will be upgraded to version 5.5.15.

To upgrade existing installations of MySQL 5.5.x, connect to your server through SSH and execute the following from the command prompt:

# vinstall mysql5.5

MySQL-5.1.58

The vinstall for MySQL5.1 will be upgraded to version 5.1.58.

To upgrade existing installations of MySQL 5.1.x, connect to your server through SSH and execute the following from the command prompt:

# vinstall mysql5.1

phpMyAdmin-3.4.3.2

The vinstall for phpMyAdmin will be upgraded to version 3.4.3.2.

To upgrade existing installations of phpMyAdmin, connect to your server through SSH and execute the following from the command prompt:

# vinstall phpmyadmin

Postgresql-8.4.8

The vinstall for Postgresql will be upgraded to version 8.4.8.

To upgrade existing installations of Postgresql8, connect to your server through SSH and execute the following from the command prompt:

# vinstall postgresql8

Spamassassin-3.3.2

Spamassassin will be upgraded to version 3.3.2.

To upgrade Spamassassin, connect to your server through SSH and execute the following from the command prompt:

# vinstall spamassassin

ClamAV-0.97.2

ClamAV will be upgraded to version 0.97.2. This upgrade fixes problems with the bytecode engine, Safebrowsing detection, hash matcher, and other minor issues.

To upgrade ClamAV, connect to your server through SSH and execute the following from the command prompt:

# vinstall clamav

Innotop-1.8.0

Innotop will now be available as a vinstall. Innotop replaces mtop for newer versions of MySQL.

To install innotop, connect to your server through SSH and execute the following from the command prompt:

# vinstall innotop

No Action Needed

The following VPS/MPS v3 updates do not require action by customers to take advantage of the full benefits of the update. Some services may be rebooted as part of the update.

Apache 2.2.20

Apache will be upgraded to version 2.2.20 to address the security vulnerability (CVE-2011-3192) discussed here:

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3192

sendmail 8.14.5

Sendmail will be upgraded to version 8.14.5.

mod_perl-2.0.5

mod_perl will be upgraded to version 2.0.5

OpenSSH 5.8p2

OpenSSH will be upgraded to version 5.8p2. This upgrade is required to execute ssh_keygen which may generate a new file on the server.

lsof 4.85D_1,5

lsof will be upgraded to version 4.85D_1,5.

GlobalSign SSL

The GlobalSign SSL install will be updated to use the DocumentRoot path as the location for the CSR validation for the domain which the SSL certificate is being installed.

gpg.conf

New users will now have a .gnupg/gpg.conf file on creation.

ruby+nopthreads-1.8.7.334,1

Ruby has been repackaged and will be reinstalled to correct missing dependencies.

Python-2.5.6

Python will be upgraded to version 2.5.6.

Signature Hosting

This release will be sent to all Signature servers on this schedule:

Sterling, VA DC on 11/10/11
San Jose, CA DC on 11/15/11

Important services to be restarted:

The following services will be restarted by Verio as part of the update:

• qmail
• dovecot
• proftpd

Qmail

Rebuild qmail with OpenSSL 0.9.8 for PCI compliance- This is a rebuild of qmail to include OpenSSL 0.9.8 which required a rebuild of OpenLDAP 2.2.18

Dovecot

Rebuild Dovecot 1.1.7 with OpenSSL 0.9.8 Becomes dovecot-1.1.7a- This is a rebuild of Dovecot 1.1.7 with OpenSSL 0.9.8 for PCI Compliance. This includes a rebuild of OpenLDAP.

ProFTP

ProFTPd Built With OpenSSL 0.9.8- This is for building ProFTPd with OpenSSL 0.9.8 for PCI compliance.

Add years 2011-2020 on drop down list on Podcast Manager

Added years 2011 through 2020 in the year dropdown on Podcasting manager.

Signature

Update Version history to 7.4

This case involves the Version History which appears in the Signature Control Panel. This will be updated once the 7.4 items are finalized.

Note:This notification reflects the best knowledge of code and feature updates for this release. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.