• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • Support for BIND DNS has been removed from Plesk for Windows due to security and maintenance risks.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS.

Issue Urgent security issue in NGINX/php-fpm

LaurentR2D2 said:
Hello,
I've seen this on the Nextcloud blog. Is there a Nginx and PHP upgrade planned concerning this issue ?

Urgent security issue in NGINX/php-fpm – Nextcloud

Thank you
Click to expand...

Thanks. Good article. But it's not "hack scare" - imho. Have you read CVE article ( PHP-FPM/Nginx Vulnerability - CVE-2019-11043 | Liquid Web) - certain preconditions has to be met for this to work. Plesk updates Third party components quite fast. In this case they need to update:

PHP 7.3 from version 7.3.10. to 7.3.11 and
PHP 7.2 from version 7.2.23. to 7.2.24 and this problems should be resolved as far as preconditions are met.

I am pretty we can count on them updating PHP version sometimes next week.
 
Last edited:
You must log in or register to reply here.

Similar threads

L
Question PHP-FPM served by Nginx vs. Apache (again)
Replies
2
Views
836
lema
L
M
Question Cron Jobs not running accoring to NextCloud, after upgrade to NextCloud 30/ Hub9
Replies
2
Views
801
Sebahat.hadzhi
Sebahat.hadzhi
A
Issue Website sometime getting down due to nginx & apache error
Replies
3
Views
628
arjch
A
brother4
Question Optimizing PHP FPM Handler Settings for Apache and Nginx in Plesk
Replies
0
Views
2K
brother4
brother4
S
Question PHP-FPM monitoring
Replies
2
Views
2K
spiroszermalias
S
Back
Top