All our cpanel servers have been updated to 11.40.02. There is a known bug with the webmail which does not allow you to set a custom start/end date for your autoresponder. cPanel DEV is aware of the issue and will have a resolution on the next build which will be implemented at time of release.
Changelog:
Fixed case 56437: Use Linux Netlink to find SMTP connection uids.
Fixed case 51450: Changed SPF default from "?all" to "~all".
Fixed case 61497: Ensure correct number of moderation requests is shown.
Fixed case 63973: Report remote MySQL database disk usage.
Fixed case 64259: Allow creation of proxy subdomains without autodiscover.
Fixed case 65709: Forbid uppercase letters in postgres db name.
Fixed case 66713: Jailshell prevents usage of crontab without /usr/bin mounted suid.
Fixed case 69529: Fix hung process when running "whostmgr2 --updatetweaksettings" in DNSONLY.
Fixed case 70149: Fix account transfers with an empty tarroot.
Fixed case 71041: Update Archive::Tar::Builder to 1.3-1.cp1136.
Fixed case 71829: Update Softlayer DNS module to work with DKIM and SPF records.
Fixed case 72089: Make "Always redirect to SSL" exclude other redirect config.
Fixed case 72709: Update Roundcube to 0.9.2.
Fixed case 73093: Rename SSL functionality in cPanel to match changes made in 11.36.
Fixed case 73357: Update ckeditor to the latest version.
Fixed case 73697: Populate reseller list properly in locale edit screen.
Fixed case 74405: API Shell does not handle a umask other then 0022.
Fixed case 74657: Don't clean out summary.log from updatelogs directory.
Fixed case 74673: Allow an SSL host for the hostname to be installed on any ip on the server.
Fixed case 74745: Warn when MySQL user can't be deleted.
Fixed case 74813: Remove unused cPanelRPM.pm from /scripts.
Fixed case 74857: Remove checkoldperl.
Fixed case 74917: Remove unused module Cpanel/cPServices.pm.
Fixed case 74985: Added warning text for API Shell.
Fixed case 74993: Added further text to clarify API Shell purpose.
Fixed case 75017: Update phpMyAdmin from version #4.0.4.2 to version #4.0.5.
Fixed case 75021: Pretty-print XLIFF data.
Fixed case 75053: Changed messages in API Shell to use warning style.
Fixed case 75065: Fix quota checking delay related to NFS.
Fixed case 75077: Log session creation and destruction.
Fixed case 75081: Give meaningful file manager errors in demo mode.
Fixed case 75097: Don't install modules to cPanel perl using perlinstaller.
Fixed case 75101: Not all domains displayed when generating csrs and certs.
Fixed case 75141: Allow usage of either "password=" or "pass=" in MySQL ".my.cnf" file.
Fixed case 75153: Modify basic WHM setup to allow VLAN tagging.
Fixed case 75249: Default & disabled feature files added in install.
Fixed case 75285: Collapse RR records that are not TXT for SoftLayer.
Fixed case 75321: Fix error message in Mail Queue Manager.
Fixed case 75329: Restore the ability to disable security tokens.
Fixed case 75337: Fix DisplayBinaryAsHex in phpMyAdmin.
Fixed case 75345: Don't change /etc/pam.d permissions.
Fixed case 75365: Improve error checking in ClamScan module.
Fixed case 75385: Properly restore mail by default on package restoration.
Fixed case 75405: Limit check_cpanel_rpms to only RPMs installed by cPanel.
Fixed case 75409: Update proftpd to not include /etc/pam.d.
Fixed case 75449: Fix import from SQL query form in phpMyAdmin.
Fixed case 75469: Make updatenow.static work without external modules.
Fixed case 75525: Improve sanitization of SHELL lines for jailshell crontab.
Fixed case 75537: Fix @INC filtering in two adminbins.
Fixed case 75545: Update adminbins to use getpwnam homedir.
Fixed case 75549: Add missing cron.conf file for cron adminbin.
Fixed case 75561: Log pam_cpses errors to ERROR instead of ALERT.
Fixed case 75565: Ensure samerole is used for postgres SSO.
Fixed case 75593: Adding a mailing list fails due to invalid cPanel tags.
Fixed case 75609: Prevent NUL injection in temporary user names.
Fixed case 75621: Do not allow parking of a subdomain of an account on remote server.
Fixed case 75693: Update dovecot to 2.2.5-2.cp1140.
Fixed case 75709: The autoconfig service showed the wrong port when pop3 was provided.
Fixed case 75717: New log files should be set up for rotation.
Fixed case 75729: Prevent integrated items that are no longer a plugin from being checked by --updateaddons.
Fixed case 75745: Get rid of undefined pid warning from Cpanel::SafeFile.
Fixed case 75753: Fix MySQL users missing grants.
Fixed case 75829: Fix selectrow_arrayref, selectrow_hashref in Cpanel::MysqlUtils::NetMySQL.
Fixed case 75933: Correct ClamAV notification during initial upgrade to 11.40.
Fixed case 75937: Make proxy subdomains work with SSL and Apache 2.4.
Fixed case 75989: Dovecot strict permissions prevent deleting or renaming IMAP folders.
[security] Fixed case 76029: Update RoundCube to 0.9.3.
Fixed case 76081: Determine correct WebDAV ports in Getting Started wizard.
Fixed case 76097: Improve the reliability of the branding dynamicui cache.
Fixed case 76165: Added CPANEL.util.byte_length to check string byte length.
Fixed case 76189: Fixed typo: "recieve" -> "receive".
Fixed case 76197: Normalize the display of error messages for postgres adduser.
Fixed case 76205: Remove buttons to add and edit users through phpMyAdmin.
Fixed case 76221: Remove leading space.
Fixed case 76309: Update jquery-ui to the latest version.
Fixed case 76365: Update jquery-ui-themes to the latest version.
Fixed case 76393: Create webalizer logs in a separate directory for addon domains.
Fixed case 76397: cPanel Update slave should not die on SIGHUP.
Fixed case 76445: Removed deprecated module usage in updateuserdomains.
Fixed case 76449: Handle YAML files better, particularly lexicon files.
Fixed case 76477: Modified API Shell to use Combo Boxes.
Fixed case 76517: Add path so setupvirtfs can load modules at run time.
Fixed case 76561: Update cpdavd for OO Cpanel::Session.
Fixed case 76565: Silence warnings about empty session origin fields.
Fixed case 76585: Fix JS errors in response handling and WHM API v1 batch mode.
Fixed case 76593: Jail_safe_crontab does not pass back crontab errors gracefully.
Fixed case 76609: Remove bare variables from ipv6 phrases.
Fixed case 76625: Apply phpMyAdmin patch for large table export problem.
Fixed case 76653: Stage minified x3 js under x3, not cpanel.
Fixed case 76693: Note that jailshell users can escape with full /proc.
Fixed case 76701: Remove default from new 11.40 rpm.versions file url strings to reduce confusion.
Fixed case 76733: Modified the request timeout to take the number of users into consideration.
Fixed case 76737: Add symlinks for angularjs and jquery.
Fixed case 76741: Change strings for the range page and added quotes to the enable messages.
Fixed case 76777: Remove symlinks from editor RPMs.
Fixed case 76809: Added back code that was lost in a commit.
Fixed case 76813: The webmail UI should not display lists for the main cPanel user.
Fixed case 76861: Fix filter by filetype with multiple types.
Fixed case 76933: Add support for MPM itk in Apache.
Fixed case 76937: Add additional ports to the default IPv6 firewall.
Fixed case 77009: Allow jail_safe_crontab to work with pid namespaces.
Fixed case 77025: Remove all references to pam group.
Fixed case 77029: SIGHUP crashes cpsrvd due to typo in handle_sigHUP.
Fixed case 77033: Fix API shell when $function =~ m/^:|:$/.
Fixed case 77037: Fix incorrect entities in legacy locale files; change '":' to '"'.
Fixed case 77049: Fix URL display as hash value on "WHM >> Development >> Manage Hooks" page.
Fixed case 77065: Update security advisor from upstream.
Fixed case 77069: Generate correct paths for FTP accounts.
Fixed case 77077: Make Horde save sent mail by default with Dovecot.
Fixed case 77081: Adding a parked domain fails if deferred restarts are enabled in bind.
Fixed case 77089: Mailman Configuration Cleanup.
Fixed case 77105: Remove reference to script that no longer exists.
Fixed case 77121: scripts/maintenance should not globally destruct on exec failure.
Fixed case 77145: Make Manage cPAddons work with $Cpanel::homedir changes.
Fixed case 77169: Correctly report the success stats for upload_files.
Fixed case 77197: Fix error when bin/cpses_pam_ctl not detected /lib[64]/security/pam_cpses.so.
Fixed case 77209: Fix refactoring error in dbstoregrants causing double quoting.
Fixed case 77221: Make whm-server-status allow connections from ::1.
Fixed case 77265: Pass lock and unlock arguments through to /usr/bin/passwd.
Fixed case 77313: Update version to 11.40.
Fixed case 77333: Remove Privileges link from phpMyAdmin.
Fixed case 77337: Upstream Security Advisor 1.02.
Fixed case 77341: Don't warn when starting jailshell with missing LOCALE.
Fixed case 77393: Jailshell: Don't fail if /usr/local is a partition.
Fixed case 77401: Update ftp passwords after changing anonymous ftp setting.
Fixed case 77417: Logaholic: Move creation of lastused column in Profiles table.
Fixed case 77445: Copy the phpmyadmin landing page logic to phppgadmin.
Fixed case 77505: Make ApiInfo's module loading safer.
Fixed case 77529: Fix misalignment between Filter Accounts and account list areas on IPv6 page.
Fixed case 77549: Fix attempt to validate issing pkgname element.
Fixed case 77593: Update to Security Advisor 1.03.
Fixed case 77617: Set correct mail directory permissions on account creation.
Fixed case 77629: Allow removing the last item in Background Process Killer.
Fixed case 77637: Fix tweak setting for disallowing third-party cPAddons.
Fixed case 77641: Report all lines in the MySQL check/repair output.
Fixed case 77701: Fixed form submission issue when only one package extension on system.
Fixed case 77709: Properly restrict ClamAV scans.
Fixed case 77761: Fix handling of security questions.
Fixed case 77869: Prevent reseller without privileges from creating account using hostname domain.
Fixed case 77889: Correct tweaksetting logic for determining requirements.
Fixed case 77917: Skip ipv6.domain.com in bin/update_userdata.
Fixed case 77985: Don't restart ipalias if promote_secondaries is 1.
Fixed case 78025: Exit 0 on success for appconfig utilities.
Fixed case 78029: Fix creation of Logaholic tables.
Fixed case 78033: Fix bug where resellers were not able to create accounts.
Fixed case 78069: Use maxemailsperhour setting as default for new accounts.
Implemented case 7498: Enable mysqli extension for phpMyAdmin.
Implemented case 10334: IPv6 support for website content.
Implemented case 47515: Drop use of pkgacct.static for transfers from cPanel 11.18 or earlier.
Implemented case 55333: Replace WYSIWYGPro with CKEditor and elFinder.
Implemented case 59140: Forwarder tracking.
Implemented case 69029: Update git to 1.8.3.4.
Implemented case 73049: Single signon / Session generator for cPanel.
Implemented case 74325: Ship ClamAV as an RPM.
Implemented case 74493: Add a warning message about deleting virtfs directories.
Implemented case 74533: Make update-analysis code use HTTPS.
Implemented case 75269: Remove un-necessary legacy scripts.
Implemented case 75313: MySQL and Postgresql quoting normalization.
Implemented case 75445: Added multi-build support to EasyApache.
Implemented cases 75713,76389: Fixed minor issue with internal merge tool.
Implemented case 75965: Allow testing info to be kept in /var/tmp/ when merge_request dies unexpectedly.
Implemented case 76225: Cause make perlstatic to fail if non-core modules are detected during build.
Implemented case 76233: Add new items to server analytics program.
Implemented case 76301: Update elfinder to the latest version.
Implemented case 76317: Update jquery-1.7.2 to the latest version.
Implemented case 76321: Correct inconsistencies between package and account create/edit forms.
Implemented case 76409: Mailman Single sign on and admin delegation.
Implemented case 76417: Integrate cPanel Security Advisor.
Implemented case 76485: Add hooks to Cpanel::ParkAdmin functions (WHM).
Implemented case 76657: Make cPanel plugin file generator a page within WHM.
Implemented case 76665: Replacement system passwd binary that is cPanel aware.
Implemented case 76669: Provide display of the list admin and access type in the cPanel list UI.
Implemented case 76841: Add support for MPM itk in Apache.
Implemented case 76909: Make elfinder show only directories and images.
Implemented case 77273: Logaholic 4.1.4 integration.
Implemented case 77725: Remove the "semi-private" mailing list category, and fix subscribe_policy logic.
Implemented case 78021: Update roundcube to 0.9.4.
