Get Altered RPMs found warning after patch CVE-2016-3714 ImageMagick
Hello,
After modify the file /usr/local/cpanel/3rdparty/etc/ImageMagick-6/policy.xml, I keep getting following warning from all cpanel servers. If I run the command to fix the broken RPM, it removed the policy I added for disabling EPHEMERAL, URL, HTTPS, MVG, and MSL.
Should I ignore the Altered RPMs found warning?
Thanks
The system detected problems with the following cPanel-provided files that the RPM controls:
RPM Status Additional Information
cpanel-ImageMagick,6.9.0,2.cp1150-/usr/local/cpanel/3rdparty/etc/ImageMagick-6/policy.xml Broken S.5....T
If you did not make these changes intentionally, execute the following command as the root user to correct them:
/usr/local/cpanel/scripts/check_cpanel_rpms --fix
-
Hello, You will need to set this RPM to "unmanaged" if you want to manage the file on your own and prevent cPanel from altering it. There's a document on how to do this at: How to Set or Unset RPM Management - cPanel Knowledge Base - cPanel Documentation Keep in mind the package will no longer receive updates from cPanel after making this change. Thank you. 0
Please sign in to leave a comment.
Comments
1 comment