Affected Operating Systems
- RHEL 7
- CloudLinux 7
There is an update released for the openssl library with version 1.0.2k-23 . This is a buggy version which will result in failure of nginx or http servers. As cloudlinux take updates from redhat , this issue is also affected by cloudlinux servers too .
Bug Tracking
There is already a bug ticket opened for this issue on redhat bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=2039993
Fix upgrading to cpnginx 11.7 – Recommended
You need to upgrade cpnginx to 11.7 after that disable the OCSP stapling as follows,
# touch /etc/cpnginx/disable_ocsp
Now rebuild all vhosts
# nginxctl build vhosts
# nginxctl restart
Another solution
To solve this issue please downgrade openss to the rior version using the following command
# yum downgrade openssl openssl-libs openssl-devel
You may also disable automatic cpanel update too . Please kindly monitor the bug tracking url and once redhat / Cloudlinux release and update for this bug, you can enable automatic updates.
Please don’t open a support ticket with this issues, which will be automatically discarded.
