Blog

Login Register

KernelCare for CentOS & RHEL 7

KernelCare is now available for CentOS & RHEL 7 kernels.
Latest CentOS / RHEL kernels can be patched against privilege escalation vulnerability CVE-2014-4943. Other supported kernels were patched against it last week

CVEs: CVE-2014-4943

Systems with AUTO_UPDATE=True (DEFAULT) in /etc/sysconfig/kcare/kcare.conf will automatically update, and no action is needed for them.

You can manually update the server by running:
# /usr/bin/kcarectl --update

Details:
CVE-2014-4943 kernel: net: pppol2tp: level handling in pppol2tp_[s,g]etsockopt()
A flaw in the Linux kernel allowing an unprivileged user to escalate to kernel privilege when CONFIG_PPPOL2TP is enabled.

KernelCare - new privilege escalation vulnerability CVE-2014-4943

CentOS 6, RHEL 6, CloudLinux 6 and OpenVZ kernels can now be patched against CVE-2014-4943. The patched kernels are yet to be available from the vendors. Yet, due to the nature of the issue, we wanted to release the patch as soon as possible

CVEs: CVE-2014-4943

Systems with AUTO_UPDATE=True (DEFAULT) in /etc/sysconfig/kcare/kcare.conf will automatically update, and no action is needed for them.

You can manually update the server by running:
# /usr/bin/kcarectl --update

Details:
  • CVE-2014-4943 kernel: net: pppol2tp: level handling in pppol2tp_[s,g]etsockopt()
    A flaw in the Linux kernel allowing an unprivileged user to escalate to kernel privilege when CONFIG_PPPOL2TP is enabled.

Updates to CageFS, LVE Manager & LVE Stats


New versions of CageFS, LVE Manager & LVE Stats were moved to production channels.

Changelog was corrected on Thu, July 17th at 9:00pm EST

Changelog:
lve-stats 0.10-31
  • LVESTATS-33: bugfix for lveinfo --dbgov --from --to any options located after --to are ignored
  • LVESTATS-34: SQLite database is locked
  • LVESTATS-32: bugfix for dbgovchart with --period parameter
  • LVESTATS-19: error while reading lve_version from database on package update
  • LVESTATS-24: Incorrect units produced by dbgovchart (KB/s instead MB/s)
  • LVESTATS-20: retrieve LVE info from REDIS like HGET "testlveid.net" "domains.com:Domain:lveid" 10000)
  • LVESTATS-30: Added check if the faulted-user is present in cPanel
  • LVESTATS-31: statsnotifer: do not print error when CPanel is not installed, just do nothing
  • LVESTATS-29: bugfix for reseller cpanel notification
  • LVESTATS-23: fix error when run /usr/bin/python /usr/sbin/statsnotifer check-users
  • Add notification Admin/Resellers/Customers when LVE faults are encountered
  • json interface for lve-stats
  • LVESTATS-22: Added json interface for lve-stats
  • LVESTATS-21: Added notification Admin/Resellers/Customers when LVE faults are encountered
lve-utils 1.4-18.3
  • LU-88: lvectl package-set doesn't set --pmem parameter
  • LU-87: bugfix for lvemanager (russian symbols in package names) for ISPmanager CL5
  • LU-86: lvectl package-delete doesn't remove packages with russians symbols from /etc/container/ve.cfg on ISPmanager
  • LU-85: lvectl do not accept decimal separator for vmem value
  • LU-77: add functions to detect all admin users and user type in DirectAdmin
  • LU-83: lvect package-set can't create package with russian symbols
  • LU-82: display warning "--cpu option had been deprecated, use --speed instead" instead of error
  • LU-81: remove max value of speed from lvectl --help
  • LU-77: add functions to detect all admin users and user type in DirectAdmin
  • LU-84: ISPmanager: getcontrolpackages show packages with spaces in it
  • changed Requires: liblve >= 1.2-1.12
  • LU-80: Add creation of symlinks for Percona-Server to alt-php-mysql-reconfigure script
  • LU-79: set default limits via lve_set_default, but not via lve_setup
  • LU-78: LVEStat.py: do not change value of CPU limit because this breaks lve-stats
  • LU-76: failed to get package list in LVE manager in DirectAdmin
  • LU-75: lvectl paneluserslimits shows incorrect values for SPEED
  • LU-72: traceback on lvectl paneluserslimits on cPanel
  • LU-71: DA: getcontrolpaneluserspackages uses login in terminal name instead of user name and shows wrong package list
  • revert smart memory output in lvect package-list and paneluserlimits
  • crons/kill_orphaned_php-cron: do not kill php-fpm processes
  • bugfix for Plesk getcontrolpaneluserspackages --userid
  • lvectl package-list and panellimits must show speed instead cpu
  • add to lvectl json output format speed and cpu
  • Plesk: correctly return UID and package name in getcontrolpaneluserspackages --package
  • revert smart memory output in lvect package-list and paneluserlimits
  • Bugfix: Do not check upper speed limit in lvectl and ve.cfg; use system upper limit if user limit greater than system limit
  • crons/kill_orphaned_php-cron: do not kill php-fpm processes
  • bugfix for Plesk getcontrolpaneluserspackages --userid
  • lvectl package-list and panellimits must show speed instead cpu
  • add to lvectl json ountput format speed and cpu
  • Plesk: correctly return UID and package name in getcontrolpaneluserspackages --package
  • revert smart memory output in lvect package-list and paneluserlimits
  • Bugfix: Do not check upper speed limit in lvectl and ve.cfg; use system upper limit if user limit greater than system limit
  • LU-66: remove pkg name from output getcontrolpaneluserspackages --package on plesk
  • LU-65: fix value type in getcontrolpaneluserspackages (PLESK class)
  • LU-64: redone lvectl package-list and panellimits to show speed instead cpu
  • LU-67: add to lvectl json output format speed and cpu
  • LU-62: crons/kill_orphaned_php-cron: do not kill php-fpm processes
  • LU-68: remove speed upper limit; use system upper limit if user limit is greater than system limit
  • LU-69: revert smart memory output in package-list and paneuserlimits
  • LU-63: remove mail alerts after lveutils-panel-cron on interworx
  • Fix for mailing alerts after lveutils-panel-cron on interworx
  • lvectl: param parse bug fix
  • LU-57:add ability to use fractional number; make mhz/ghz case insensitive
  • LU-56:hide some error message when using unimplemented func
  • LU-55: fix some type func call errors, fix lvectl help message
  • remove func check_speed; use convert_func when testing speed values
  • redone DirectAdmin algorithm of finding panel packages
  • Now each admin must see packages from /usr/local/directadmin/data/users/ADMIN_NAME/package.list and /usr/local/directadmin/data/admin/package.list
  • redone lvectl to use pylve lib
  • redone lvectl to understand new lve-kmod format
  • LU-47: Add ability to specify IOPS (input output operations per second)
  • Add IOPS to lveps/lvetop
  • LVEMAN-107: fix bug License not valid script in cPanel doesn't work "sumbit" instead of submit
python-cllib 1-19
  • PTCLLIB-13: clsudo.py: add ability to process multiple users
  • PTCLLIB-12: memory_to_page func can't convert float numbers
  • PTCLLIB-11: Bugfix for lvectl list / user-list
  • PTCLLIB-10: Rounging issue page_to_memory
  • clfunc.py: added reload_processes() function
  • Add clconfpars function (for parsing simple cofig files "key=val";)
  • PTCLLIB-9: Add clconfpars (for parsing simple cofig files "key=val";)
  • PTCLLIB-8: clfunc.py: added reload_processes() function
  • clfunc.py: add more information in error message
  • clfunc.py: fix bug in memory convert func
lvemanager 0.8-1.32
  • LVEMAN-174: DirectAdmin, Plesk: list of modules for selected php version is empty for existent user
  • LVEMAN-168: cPanel fix: when switching to a native version generates an error "php version is incorrect"
  • LVEMAN-160: LVE Manager for DirectAdmin: fix security issue found by Stieven Craig
  • LVEMAN-148: DirectAdmin: add lines to /etc/sudoers for all admins
  • LVEMAN-158: ISPmanager cl5/cl6 can't use package name with quotas
  • LVEMAN-153: cl-quota: process mounts correctly
  • changed Requires: lve-stats >= 0.10-26
  • LVEMAN-154: ISPmanager plugin on CL5 (lve_ver 4) is not functional
  • LVEMAN-152: LVEManager for cPanel: fix security issues
  • LVEMAN-113: PHP-Selector custom options should be placed after system setting in alt_php.ini
  • LVEMAN-147: Use Defaults button in PHP Selector (user's cpanel) does not work properly
  • LVEMAN-149: Empty headers fields in ISPmanager in details tab
  • LVEMAN-146: history and statistics are broken in LVEManager in Plesk
  • LVEMAN-145: Plesk->lvemanager->packages speed changes incorrect
  • LVEMAN-141: Headers are not valid for ISPmanager -> Lvemanager ->Home
  • LVEMAN-142: ISP->LVEmanager->account should not contain users without lve
  • LVEMAN-134: use SPEED instead of CPU in lvemanager for Plesk
  • LVEMAN-135: use SPEED instead of CPU in lvemanager for InterWorx
  • LVEMAN-136: InterWorx ->lvemanager ->settings ->nCPU,vMem,EP,IO fields are empty
  • LVEMAN-137: use SPEED instead of CPU in lvemanager for ISPmanager
  • LVEMAN-138: use SPEED instead of CPU in lvemanager for DirectAdmin
  • LVEMAN-133: LVE manager on cpanel: CPU column is empty when using lve-utils 1.4-8
  • LVEMAN-128: parameter error --user
  • LVEMAN-130: issues with PHP Selector in Plesk (empty lists of php versions/php modules)
  • LVEMAN-117: cPanel: hide buttons for native PHP version
  • LVEMAN-131: fix for cpanel LVE Manager -> Options->Apply
  • LVEMAN-103: Added preserving comments in /etc/sysconfig/cloudlinux-notify; Add filtering check period range in backend (hours from 0 to 23; minutes from 0 to 59) for compatibility with the cron jobs
  • LVEMAN-122: Add Select PHP version icon for cPanel 11.42.0 in new theme paper_lantern
  • LVEMAN-126: set "lvectl set id --speed" instead of "lvectl set id --cpu" in lvemanager for cpanel
  • LVEMAN-125: Added validation name extensions (for selectorctl --enable-user-extensions=...)
  • LVEMAN-124: change '-' to '~' in cpanel/configs/php.conf
  • LVEMAN-111: Russian translation correction for cPanel
  • LVEMAN-121: redone cagefs checking to use cagefs own function
  • LVEMAN-118: skip dir in user home dir
  • LVEMAN-103: Added web interface for managing the notification (Home => Server Configuration => CloudLinux LVE Manager => Options)
  • Add Select PHP version icon for cPanel 11.42.0 in new theme paper_lantern
  • cl-selector, selectorctl: do not check .cagefs/.cagefs.enabled files in home directory; check /etc/cagefs/users.enabled (or users.disabled) instead
  • set "lvectl set id --speed" instead of "lvectl set id --cpu" in lvemanager for cpanel
  • selectorctl does not show error about non-existing extension
  • error_reporting value in selector php.conf file
  • Notify Admin/Customers when LVE faults are encountered (user hits one of the limits)
  • Russian language improvements
  • Removing symlinks in /etc/cl.selector/
  • LVEMAN-114: add lock in plesk and da to prevent admin enable php selector
  • Fix ISPmanager fails in LVE statistics under user
CageFS 5.2-36
  • CAG-295: add /bin/ping to proxy.commands
  • changed required versions of lve-utils and python-cllib
  • CAG-293: cagefslib.py: strip trailing slash in function is_path_in_exclusions (if needed)
  • CAG-291: configure cagefs for postgresql correctly when /etc/sysconfig/postgres does not exist
  • CAG-289: DirectAdmin CageFS User Manager under other admin accounts
  • CAG-294: DirectAdmin: add /usr/local/awstats/wwwroot/cgi-bin read-only mountpoint
  • CAG-290: PHP Selector custom options should be placed after system setting in alt_php.ini
  • CAG-274: ensure that directory /usr/share/cagefs-skeleton/usr/bin exists before copying crontab.cagefs to that directory
  • CAG-287: /usr/sbin/cagefsctl --setup-cl-selector on ISP: check if directory /usr/local/bin exists already before creating it
  • CAG-279: use full path for flock in crontab.proxyexec
  • CAG-276: cagefsctl --tmpwatch: add ability to configure paths that are to be cleaned
  • CAG-288: cagefsctl --rebuild-alt-php-ini: reload php processes
  • do not create .cagefs.enabled files; enable stat for /etc/cagefs/* directories instead (change permissions to 701)
  • LVEMAN-121: add to cagefsctl function is_cagefs_enabled()
  • CAG-275: do not create .cagefs.enabled files; enable stat for /etc/cagefs/* directories instead (change permissions to 701)
  • Additional fix 2 for CAG-272: user's status is not set after creating of the user via HTTP request
  • CAG-278: fix bug in phpinivalidator.py
  • CAG-272: User's status is not set after creating of the user via HTTP request ISP Manager
  • exclude saslauth user from CageFS
  • increased cagefs_lve_version
  • cagefsctl: check /proc/lve/list in order to detect LVE/jail support (CAG-271)
  • CAG-267:super global php.ini with default directives/values
  • CAG-240: add option --list-logged-in, that shows users logged in cagefs via ssh
  • CAG-268: Add ability to run proxy commands on remote server

To update:
$ yum update lve-stats cagefs lvemanager

Beta: mod_lsapi - supercharge your Apache PHP hosting


I had been unhappy with existing ways to serve PHP under Apache for a number of reasons:
  • RUID2 + mod_php - is a giant security hole that lets any user get a root account
  • MPM ITK - is very slow, as it kills processes after each request
  • suPHP & CGI - are both slow, as they start PHP on each request. They are also incompatible with opcode caching.
  • FastCGI - creates a lot of stability issues, hard to configure due to the way it handles processes, and doesn't use opcode caching optimally.
  • PHP FPM - needs a socket/startup per customer, not that stable with Apache and creates a mess when we tried to integrate it with PHP Selector - as now PHP selector would have to restart PHP FPM processes.

After a long period of research we figured out that what we really want is to serve PHP the way it is served by LiteSpeed web server.
Luckily - LiteSpeed Tech open sourced parts of it PHP process management & communication protocol.
So, we went to work - and did the rest. The result of our work is mod_lsapi - an Apache module to serve PHP. While your Apache will still be slower then LiteSpeed API, it will be much faster then with any other way to serve PHP.

Some of the benefits of mod_lsapi comparing to other ways to serve PHP:
  • Speed - it is faster than any other way to serve PHP with Apache
  • Stability - it doesn't suffer from stability issues in process management like PHP FPM
  • Utilizes full benefits of opcode caching
  • MPM Worker & Event compatible
  • Support for PHP directives in .htaccess files
  • Drop in replacement for existing ways to serve PHP
  • Fully compatible with PHP Selector

The software is currently in beta stage, and you can find more info on how to deploy it here:
http://docs.cloudlinux.com/index.html?apache_mod_lsapi.html

While mod_lsapi already outperforms anything available for serving PHP on Apache - there is a lot more that we plan to add to it, like:
  • PHP version per directory settings
  • Faster first page response
  • Higher density
  • Adaptive process spawning
Small FAQ:

Q: Is it available now?
A: Yes, it is available now to current CloudLinux customers

Q: Is it open source?
A: Parts of mod_lsapi are opensourced, but not everything. We closed source lsapi library that allows mod_lsapi to communicate with lsphp.

Q: Does it require PHP Selector?
A: Yes

Q: Does it require CageFS?
A: Yes

Q: Do I have to use it?
A: No, you can continue using whatever way to serve PHP you have used before

Q: Can I switch it off if I don't like it?
A: Yes

Q: Has it been used in production environment?
A: Yes, we have piloted it with a number of customers for the past two months to get rid of majority of issues.

CL6/Hybrid kernel 2.6.32-531.17.1.lve1.2.60 fixes CVE-2014-4699


New kernel 2.6.32-531.17.1.lve1.2.60 is available. It fixes local priveldge escallation vulnerability CVE-2014-4699

Changelog:
To update CL6 servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.60.el6

To update hybrid kernels:
$ yum install kernel-2.6.32-531.17.1.lve1.2.60.el5h

KernelCare customers don't need to update. This issue was patched by KernelCare on July 7th.

alt-php updated


PHP had been updated to newer versions in production channels.
Changelog:

To update:
$ yum groupupdate alt-php

KernelCare - RHEL 5 & CentOS 5 support added

Support for RHEL 5 & CentOS 5 kernels had been released. For now we support only x86_64 kernels. Xen kernels will be added soon.
List of supported kernels can be found here: http://patches.kernelcare.com/
Installation instructions: http://www.kernelcare.com/try_it/install.php
You can signup for KernelCare notifications for your kernel here: http://kernelcare.com/mailing-lists.php

KernelCare update for local privilege escalation CVE-2014-4699

CentOS 6, RHEL 6, CL 6 & OpenVZ can now be patched against CVE-2014-4699. The patched kernels are yet to be available from the vendors. Yet, due to the nature of the issue, we wanted to release the patch as soon as possible

CVEs: CVE-2014-4699

Systems with AUTO_UPDATE=True (DEFAULT) in /etc/sysconfig/kcare/kcare.conf will automatically update, and no action is needed for them.

You can manually update the server by running:
# /usr/bin/kcarectl --update

Details:
  • CVE-2014-4699 ptrace privilege escalation, Enforce RIP <= TASK_SIZE_MAX
    Denial of service attacks as well as local priveledge escalation are possible in some cases on x86_64 systems due to missing validation of the RIP value

Beta: MySQL Governor


New MySQL Governor beta is available from our beta repositories.

Changelog:
  • fixed errors and optimized DirectAdmin script for generating dbuser-map
  • fixed header for dbctl list (Mb/s changed to MB/s)
  • abuser mode set as default
  • fixed error on installation of MySQL 5.6 for cPanel 11.44
  • Switched MySQL installation from production repo
To install:
http://docs.cloudlinux.com/index.html?installation3.html

To update:
$ yum update governor-mysql --enablerepo=cloudlinux-updates-testing
$ /usr/share/lve/dbgovernor/mysqlgovernor.py --install

Beta: alt-php update


PHP had been updated to newer versions in our beta repository.
Changelog:

To update:
$ yum groupupdate alt-php --enablerepo=cloudlinux-updates-testing

KernelCare for CentOS/RHEL 5 - beta

Test version of KernelCare for RHEL/CentOS 5 had been released.
You can see list of supported kernels here:
http://patches.kernelcare.com/test/

To install test version, please execute:
rpm -i http://patches.kernelcare.com/kernelcare-test.x86_64.rpm

Followed by:
kcarectl --update --test

We plan to release KernelCare to production within the next 3 days.

KernelCare - CVE-2014-3519 critical Virtuozzo/OpenVZ/PCS vulnerability patched

Critical vulnerability in Virtuozzo/OpenVZ/PCS disclosed today had been patched.


Systems wtih AUTO_UPDATE=yes (DEFAULT) in /etc/kcare/kcare.conf will automatically update, and no action is needed for them.

You can manually update the server by running:
# /usr/bin/kcarectl --update

Details:

  • CVE-2014-3519
    Fixed a critical vulnerability in the legacy simfs container filesystem (ploop is not affected) (CVE-2014-3519, PSBM-27641)

KernelCare - Updates for CL6, Virtuozzo, OpenVZ & PCS

Security patches were backported from latest RHEL kernel for CloudLinux, Virtuozzo, OpenVZ & PCS

More info could be found at:
CloudLinux patches: https://groups.google.com/forum/#!topic/kernelcare-cl6/0vn9P7V5y4A
OpenVZ/Virtuozzo/PCS: https://groups.google.com/forum/#!topic/kernelcare-vz/j87tIz0hlxA

CL6/Hybrid kernel: 2.6.32-531.17.1.lve1.2.58



Minor update to fix a bug in futexes introduced in previous version of upstream kernel.


Changelog:

To update CL6 servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.58.el6 lve-kmod-1.2-62.el6

To update Hybrid servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.58.el5h lve-kmod-1.2-62.el5h

followed by reboot.

For KernelCare.com users updates had been already applied without the need for reboot.

KernelCare - Updates for CentOS 6 & RHEL6

New updates are available for CentOS and RHEL 6. You can find more info about the update here:
https://groups.google.com/forum/#!topic/kernelcare-centos6/9PgxNo_bl2Q

We have created mailing lists/google groups to which you can signup to receive updates related to your KernelCare subscription. You can signup for the updates here: http://kernelcare.com/mailing-lists.php

Beta: alt-php update

PHP 5.6.0 beta 4 is available as part of new alt-php beta update.

Changelog:
  • PHP 5.6.0 beta 4 update (changelog)
  • better Percona Server support from alt-php
  • alt-php-magickwand bugfix
To update:
$ yum groupupdate alt-php --enablerepo=cloudlinux-updates-testing

KernelCare: CloudLinux and VZ kernel updates, older VZ kernels support

CloudLinux 2.6.32-531.17.1.lve1.2.57el6 kernel can now be patched with KernelCare to fix
futex functionallity deficiency introduced in upstream 2.6.32-042stab090.3 kernel and fixed in 042stab090.4 kernel. Older CloudLinux kernels are not affected. New CloudLinux kernel will be out in day or two.

Virtuozzo/PCS/OpenVZ kernel 2.6.32-042stab090.3 can now be patched with KernelCare to fix futex functionallity deficiency introduced in upstream 2.6.32-042stab090.3 kernel and fixed in 042stab090.4 kernel.

Older Virtuozzo/PCS/OpenVZ kernels 042stab076.7 to 042stab079.6 are now supported: http://patches.kernelcare.com/

beta: lve-utils 1.4-18.3

New minor beta update for lve-utils to remove few bugs prior to production release.

Changelog:
  • LU-94: Missing exception type
  • added conflict with lvemanager < 0.8-1.32
To update:

$ yum update lve-utils --enablerepo=cloudlinux-updates-testing

KernelCare: Stability updates for OpenVZ & Virtuozzo Kernels

Two bugfixes were released to KernelCare providers. We will continue pushing important stability improvements using KernelCare, and not limit the patches to security fixes only.

Following issues had been addressed:
  • ms ext4: fix online resize with a non-standard blocks per group setting (from vzkernel-2.6.32-042stab088.4)
  • fix for netconsole over bonding (from vzkernel-2.6.32-042stab090.2)
List of patches for particular kernel is available from: http://patches.kernelcare.com
More info at http://www.kernelcare.com

Beta: lve-utils 1.4-18.1

New beta version of LVE utils fixes calculation of speed parameter when converting from old method, that used NCPU & CPU options.
We hope it will be last beta, before production release.

To update:
$ yum update lve-utils --enablerepo=cloudlinux-updates-testing

Fix for CVE-2014-3153 vulnerability: new kernels 2.6.32-531.17.1.lve1.2.57 for CL6 & Hybrid

New CL6 and hybrid kernels 2.6.32-531.17.1.lve1.2.57 fixes local vulnerability CVE-2014-3153.
We will provide more details on the exploit itself, once it is publish to general public by MITRE CVE Dictionary

CL5 kernels are not vulnerable.

To update CL6 servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el6 kmod-lve-1.2-61.el6

To update hybrid servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el5h kmod-lve-1.2-61.el5h

Followed by reboot.

KernelCare customers should be secured already by a patch released about 14 hours ago.

KernelCare - CVE-2014-3153 - another vulnerability patched

Patches for CVE-2014-3153 is available for CentOS, RHEL, CloudLinux & OpenVZ kernels. There is no exploit code available today from what we know, but it is possible that it will appear in the public any day now, and might be already sold on relavent forums.
We will provide more details on the exploit itself, once it is publish to general public by MITRE CVE Dictionary

There is no kernels yet for CentOS, RHEL & CloudLinux that fix this vulnerability. OpenVZ released updated kernel yesterday night. We plan to release updated kernel on Monday.

KernelCare customers can enjoy the safety right now.

Alt-php update

Updates for alt-php are moved to our production channels

Changelog:
To update:
$ yum groupupdate alt-php

CL6/Hybrid kernel 2.6.32-531.17.1.lve1.2.56 moved to production

New kernel has been moved to production

Changelog:
To update CL6 servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.56.el6 kmod-lve-1.2-60.el6

To update hybrid servers:

$ yum install kernel-2.6.32-531.17.1.lve1.2.56.el5h kmod-lve-1.2-60.el5h

KernelCare had already delivered security updates available int this kernel, but new patch were issued to match effective kernel version.

KernelCare RPM bugfix

New version of kernelcare RPM had been released. Old version had a bug in a way it run depmod on kcare module, that could cause network module not to boot on reboot. To solve the issue:

$ yum clean all
$ yum update kernelcare

The issue affected only kernelcare-0.9-1 version of RPM. kernelcare-0.9-2 fixes the issue.

Pages: Prev. | 1 | 2 | 3 | 4 | 5 | ... | 22 | Next