cPanel, Inc. has updated RPMs for EasyApache 4 with cURL version 7.58.0 on January 25, 2018. This release addresses vulnerabilities related to CVE-2018-1000007. We strongly encourage cURL users to upgrade to version 7.58.0.
All versions of cURL through 7.57.0
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:
CVE-2018-1000007 - MEDIUM
Fixed bug in authorization: headers related to CVE-2018-1000007
cPanel, Inc. has released updated RPMs for EasyApache 4 on January 25, 2018, with a updated versions of cURL 7.58.0. Unless you have enabled automatic RPM updates in your cron, update your system with either yum update or WHM's Run System Update interface.