Get the most out of your Centmin Mod LEMP stack
Become a Member

Security PHP 7.4.32, 8.0.24, 8.1.11 Security Updates & Backported Fixes For PHP 5.6/7.0/7.1/7.2/7.3

Discussion in 'Centmin Mod News' started by eva2000, Sep 29, 2022.

Thread Status:
Not open for further replies.
  1. eva2000

    eva2000 Administrator Staff Member

    49,565
    11,375
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,678
    Local Time:
    8:58 AM
    Nginx 1.21.x
    MariaDB 10.x
    PHP has released security & bug fix updates specifically for PHP 7.4.32, 8.0.24, 8.1.10 (CVE-2022-31628 & CVE-2022-31629) with backported relevant security fixes for EOL PHP 5.6/7.0/7.1/7.2/7.3 versions. For Centmin Mod 124.00stable and 130.00beta01, you can update to those versions if you haven't already. Ensure that you run cmupdate command to update your Centmin Mod local server code BEFORE you run the centmin.sh menu option 5 to update their PHP versions.

    PHP Releases


    PHP Change logs for


    Updating PHP On Centmin Mod LEMP Stacks


    • If you're on Centmin Mod 123.08stable and want PHP 7.1, 7.2, 7.3, 7.4 or 8.0 support, you will need to update your server from Centmin Mod 123.08stable to either 124.00stable and 130.00beta01 first.
      Code (Text):
      --------------------------------------------------------
             Centmin Mod Updater Sub-Menu           
      --------------------------------------------------------
      1). Setup Centmin Mod Github Environment
      2). Update Centmin Mod Current Branch
      3). Update Centmin Mod Newer Branch
      4). Exit
      --------------------------------------------------------
      Enter option [ 1 - 4 ] 3
      --------------------------------------------------------
      
    • For Centmin Mod 124.00stable or 130.00beta01 and newer, first update to latest version code via SSH command = cmupdate (same equivalent to centmin.sh menu option 23 submenu option 2 method). Then run centmin.sh menu option 5 to update to either PHP versions 8.1.11, 8.0.24 or 7.4.32 . Example output from cmupdate SSH command run:
      Code (Text):
      cmupdate
      Saved working directory and index state WIP on 130.00beta01: 10daf8f part 9 prep support for native MariaDB appstream install on EL8 in 130.00beta01
      remote: Enumerating objects: 54, done.
      remote: Counting objects: 100% (54/54), done.
      remote: Compressing objects: 100% (6/6), done.
      remote: Total 35 (delta 30), reused 32 (delta 28), pack-reused 0
      Unpacking objects: 100% (35/35), 9.00 KiB | 170.00 KiB/s, done.
      From https://github.com/centminmod/centminmod
         10daf8f..8450813  130.00beta01 -> origin/130.00beta01
      Updating 10daf8f..8450813
      Fast-forward
       centmin-cli.sh                  |   4 +--
       centmin.sh                      |   4 +--
       example/custom_config.inc       |   2 +-
       inc/cpcheck.inc                 |   4 +--
       inc/nginx_addvhost.inc          | 222 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++----------------------------------
       inc/php_patch.inc               |  28 ++++++++++++++++++---
       inc/wpsetup-fastcgi-cache.inc   | 222 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++----------------------------------
       inc/wpsetup.inc                 | 222 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++----------------------------------
       installer-gitlab.sh             |   2 +-
       installer.sh                    |   2 +-
       installer74-gitlab.sh           |   2 +-
       installer74.sh                  |   2 +-
       installer80-gitlab.sh           |   2 +-
       installer80.sh                  |   2 +-
       installer81-gitlab.sh           |   2 +-
       installer81.sh                  |   2 +-
       patches/php/php5640-81726.patch | 151 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php5640-81727.patch |  81 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7033-81726.patch | 147 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7033-81727.patch |  81 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7133-81726.patch | 147 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7133-81727.patch |  81 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7234-81726.patch | 147 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7234-81727.patch |  81 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7331-81726.patch | 146 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       patches/php/php7331-81727.patch |  77 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++
       26 files changed, 1706 insertions(+), 157 deletions(-)
       create mode 100644 patches/php/php5640-81726.patch
       create mode 100644 patches/php/php5640-81727.patch
       create mode 100644 patches/php/php7033-81726.patch
       create mode 100644 patches/php/php7033-81727.patch
       create mode 100644 patches/php/php7133-81726.patch
       create mode 100644 patches/php/php7133-81727.patch
       create mode 100644 patches/php/php7234-81726.patch
       create mode 100644 patches/php/php7234-81727.patch
       create mode 100644 patches/php/php7331-81726.patch
       create mode 100644 patches/php/php7331-81727.patch
      No local changes to save
      Already up to date.
      
    • If you are on Centmin Mod 123.08stable and concerned about losing customisations when you upgrade to Centmin Mod 124.00stable or 130.00beta01, read this guide on how to upgrade and keep most of your customisations at How to upgrade Centmin Mod + backing up customisations.

    Centmin Mod 130.00beta01 PHP Update Example


    Code (Text):
    --------------------------------------------------------
         Centmin Mod Menu 130.00beta01 centminmod.com
    --------------------------------------------------------
    1).  Centmin Install
    2).  Add Nginx vhost domain
    3).  NSD setup domain name DNS
    4).  Nginx Upgrade / Downgrade
    5).  PHP Upgrade / Downgrade
    6).  XCache Re-install
    7).  APC Cache Re-install
    8).  XCache Install
    9).  APC Cache Install
    10). Memcached Server Re-install
    11). MariaDB MySQL Upgrade & Management
    12). Zend OpCache Install/Re-install
    13). Install/Reinstall Redis PHP Extension
    14). SELinux disable
    15). Install/Reinstall ImagicK PHP Extension
    16). Change SSHD Port Number
    17). Multi-thread compression: zstd,pigz,pbzip2,lbzip2
    18). Suhosin PHP Extension install
    19). Install FFMPEG and FFMPEG PHP Extension
    20). NSD Install/Re-Install
    21). Data Transfer (TBA)
    22). Add Wordpress Nginx vhost + Cache Plugin
    23). Update Centmin Mod Code Base
    24). Exit
    --------------------------------------------------------
    Enter option [ 1 - 24 ] 5
    --------------------------------------------------------
    

    Code (Text):
    PHP Upgrade/Downgrade - Would you like to continue? [y/n] y
    
    ----------------------------------------------------------------
    Install which version of PHP? (i.e. 7.3.33, 7.4.32, 8.0.24, 8.1.11, NGDEBUG)
    PHP 7.x/7.1.x/7.2.x/7.3.x is GA Stable but still may have broken PHP extensions.
    NGDEBUG is PHP 8.1 dev builds minus incompatible PHP extensions
    ----------------------------------------------------------------
    
    Current PHP Version: 8.1.10
    Latest PHP Version Installable: 8.1.11
    
    Enter PHP Version number you want to upgrade/downgrade to: 8.1.11
    
    Do you still want to continue? [y/n] y
    
    ----------------------------------------------------------------
    existing php.ini will be backed up at /usr/local/lib/php.ini-oldversion_070622-233107
    ----------------------------------------------------------------
    
    -----------------------------------------------------------------------------------------
    Detected PHP 8.1 branch.
    You can compile Zend OPcache (Zend Optimizer Plus+) support
    as an alternative to using APC Cache or Xcache cache.
    But Zend OPcache only provides PHP opcode cache and
    DOESN'T do data caching, so if your web apps such as Wordpress,
    Drupal or vBulletin require data caching to APC or Xcache,
    it won't work with Zend OPcache.
    
    -----------------------------------------------------------------------------------------
    Do you want to use Zend OPcache [y/n] ? y
    

    Code (Text):
    php -v
    PHP 8.1.11 (cli) (built: Sep 29 2022 12:43:51) (NTS)
    Copyright (c) The PHP Group
    Zend Engine v4.1.11, Copyright (c) Zend Technologies
        with Zend OPcache v8.1.11, Copyright (c), by Zend Technologies
    

    with Argon2 hash algorithm support and libsodium PHP extension
    Code (Text):
    php -r 'print_r(get_defined_constants());' | grep -i argon
        [PASSWORD_ARGON2I] => argon2i
        [PASSWORD_ARGON2ID] => argon2id
        [PASSWORD_ARGON2_DEFAULT_MEMORY_COST] => 65536
        [PASSWORD_ARGON2_DEFAULT_TIME_COST] => 4
        [PASSWORD_ARGON2_DEFAULT_THREADS] => 1
        [PASSWORD_ARGON2_PROVIDER] => standard
        [SODIUM_CRYPTO_PWHASH_ALG_ARGON2I13] => 1
        [SODIUM_CRYPTO_PWHASH_ALG_ARGON2ID13] => 2
        [SODIUM_CRYPTO_PWHASH_STRPREFIX] => $argon2id$
    

    Code (Text):
    php --ri sodium
    sodium
    sodium support => enabled
    libsodium headers version => 1.0.18
    libsodium library version => 1.0.18
    


    Discussions:


     
Thread Status:
Not open for further replies.