ISPConfig 3.0.5.4 Patch 2 is available for download. This is a patch release for ISPConfig 3.0.5.4 that fixes some issues that were found in the last version.
A authenticated local root vulnerability has been discovered in ISPConfig.
http://www.ispconfig.org/blog/1/entry-132-ispconfig-3054p1-authenticated-local-root-vulnerability/
CERT Tracking ID: VRF#HYB1YX6V
See changelog link below for a list of all changes that are included in this release.
—————————————————–
– Download
—————————————————–
The software can be downloaded here:
http://prdownloads.sourceforge.net/ispconfig/ISPConfig-3.0.5.4p2.tar.gz
————————————
– Changelog
————————————
http://bugtracker.ispconfig.org/index.php?do=index&tasks=&project=3&due=80&status[]=
————————————–
– Known Issues:
————————————–
Please take a look at the bugtracker:
http://bugtracker.ispconfig.org
————————————–
– BUG Reporting
————————————–
Please report bugs to the ISPConfig bugtracking system:
http://bugtracker.ispconfig.org
—————————————-
– Supported Linux Distributions
—————————————-
– Debian Etch (4.0) – Wheezy (7.0) and Debian testing
– Ubuntu 7.10 – 14.04
– OpenSuSE 11 – 13.1
– CentOS 5.2 – 6.5
– Fedora 9 – 15
—————————————–
– Installation
—————————————–
The installation instructions for ISPConfig can be found here:
http://www.ispconfig.org/ispconfig-3/documentation/
or in the text files (named INSTALL_*.txt) which are inside the docs folder of the .tar.gz file.
——————————————
– Update
——————————————
To update existing ISPConfig 3 installations, run this command on the shell:
ispconfig_update.sh
Select “stable” as the update resource. The script will check if an updated version of ISPConfig 3 is available and then download the tar.gz and start the setup script.
A “reconfigure services” is not required for this patch update.
Detailed instructions for making a backup before you update can be found here:
http://www.faqforge.com/linux/controlpanels/ispconfig3/how-to-update-ispconfig-3/
If the ISPConfig version on your server does not have this script yet, follow the manual update instructions below.
——————————————-
– Manual update instructions
——————————————-
cd /tmp wget http://www.ispconfig.org/downloads/ISPConfig-3-stable.tar.gz tar xvfz ISPConfig-3-stable.tar.gz cd ispconfig3_install/install php -q update.php
