eva2000
Well-known member
Folks using Nginx + PHP-FPM should upgrade their PHP versions ASAP for a reported PHP Remote Code Execution CVE-2019-11043 security flaw announced and outlined on PHP's bug tracker at https://bugs.php.net/bug.php?id=78599 . Fixed PHP versions are 7.3.11, 7.2.24 and 7.1.33. Folks on PHP 7.0.33 or 5.6.40 are vulnerable but they're EOL versions no longer supported. Unfortunately, not all linux distributions have released the updated PHP versions or patched their versions as yet so keep checking for updates.
For Centmin Mod LEMP 123.09beta01 and higher users, I have already outlined how you can update your PHP versions and I have also backported the security fixes to PHP 7.0.33 and 5.6.40 EOL versions too https://community.centminmod.com/th...y-updates-backported-php-7-0-33-5-6-40.18531/.
Upgrade ASAP !
For Centmin Mod LEMP 123.09beta01 and higher users, I have already outlined how you can update your PHP versions and I have also backported the security fixes to PHP 7.0.33 and 5.6.40 EOL versions too https://community.centminmod.com/th...y-updates-backported-php-7-0-33-5-6-40.18531/.
Upgrade ASAP !