CloudLinux - KernelCare Blog - CloudLinux Blog
Blog
MDS-fixed

Beta: CloudLinux 6 kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.64 with a fix for MDS vulnerability is now available for download from our updates-testing repository.Changelog:CKSIX-218: x86 MDS mitigations:CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling;CVE-2018-12130 MFBDS Microarchitectural Fill Buffer Data Sampling;CVE-2018-12127 MLPDS Mic...
Continue reading
Recent Comments
Guest — Tro
Do you plan to provide patches for MDS over kernelcare? Thanks
Thursday, 16 May 2019 09:30
Guest — Alexandre
Yes, we are working now on building the KC patches for MDS
Thursday, 16 May 2019 10:11
  3879 Hits
  2 Comments
MDS-fixed

Beta: СloudLinux 7 and CloudLinux 6 Hybrid kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 7 and CloudLinux 6 Hybrid kernel version 3.10.0-962.3.2.lve1.5.25.8 with a fix for MDS vulnerability is now available for download from our updates-testing repository.Changelog:CLKRN-457: fix KABI breakage;CLKRN-458: x86 MDS mitigations:CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling;CVE-2018-12130 MFBDS Microarchitect...
Continue reading
  3564 Hits
  0 Comments
WHMS
Tags:

WHMCS plugin version 1.3.5 is here

WHMS
We are pleased to announce that the new updated WHMCS plugin version 1.3.5 is now available. This latest version embodies further improvements of the product as well as new features.You can read more about all new features and improvements in Imunify360 blog.
  2683 Hits
  0 Comments
unnamed

Why you should automate Linux kernel updates

unnamed
Linux doesn't self-update. The major vendors support unattended updates, but kernel patches mean reboots. An unpatched kernel is a vulnerable one. This article on KernelCare.com looks at the dilemma Linux system administrators face in trying to keep servers safe without rebooting them, and what they can do to resolve it. 
  3256 Hits
  0 Comments
RSAC 2019

KernelCare at 2019 RSA Conference

RSAC 2019
Come and meet KernelCare at the 2019 RSA Conference in San Fran, USA, March 4-8. Register for free with our promo code XEU9CLDLNX. CEO Igor Seletskiy and CRO Jim Jackson will be there. There’ll be a raffle, too! More details here.
  3948 Hits
  0 Comments
vulnerability7

Major 9.8 vulnerability affects multiple Linux kernels— CVE-2019-8912 (af_alg_release())

vulnerability7
The KernelCare team are tracking a new vulnerability, CVE-2019-8912.Our assessment is that the cause is this commit, the introduction of a "sockfs_setattr()" function. This function neglects to null-out values in a structure, making their values usable after exiting from the function (a so-called ‘use-after-free’ error).Our team have already r...
Continue reading
Recent Comments
Guest — Ryan Smith
So is the CloudLinux 7 kernel not affected as it's not listed above?
Friday, 22 February 2019 19:01
Igor Seletskiy
Correct. We initially thought that it was, but after detailed investigation figured out that only kernels 4.9 and higher are affec... Read More
Friday, 22 February 2019 19:06
Guest — Lucas Rolff
NVD links to Symantec's "securityfocus.com" website, which lists kernels prior to 4.9 being vulnerable as well: https://www.securi... Read More
Friday, 22 February 2019 20:59
  11528 Hits
  7 Comments
vulnerability_huge3

CVE-2019-8912

vulnerability_huge3
We have started working on patching CVE-2019-8912. We expect to start releasing patches for different kernels on Friday, 22nd February 2019, with all kernels patched up by Sunday. We will provide more information as it becomes available.https://nvd.nist.gov/vuln/detail/CVE-2019-8912
  8290 Hits
  0 Comments
KernelCare / KVM crash on EL6

KernelCare / KVM crash on EL6

KernelCare / KVM crash on EL6
The latest KernelCare patchset for EL6 distributions had a bug that triggered crashes KVM hosts in some of the configurations.The patch was rolled back within ~50 minutes, and only a small number of customers were affected.No customers on delayed feeds were affected:http://docs.kernelcare.com/index.html?delayed_feed.htm No customers on ePortal...
Continue reading
  5053 Hits
  0 Comments
5 Bad Reasons to Update Your Linux Kernel

5 Bad Reasons to Update Your Linux Kernel

5 Bad Reasons to Update Your Linux Kernel
A Linux kernel update is not to be taken lightly—change means risk.Whatever reasons you think you might have, there is really only one that matters.I tell you what it is in this blog post.
  4130 Hits
  0 Comments
L1 Terminal Fault (L1TF) patches are available in TEST feed

L1 Terminal Fault (L1TF) patches are available in TEST feed

L1 Terminal Fault (L1TF) patches are available in TEST feed
We are glad to announce that the patches for the fix of L1 Terminal Fault (L1TF) are now available for download from our test feed.The patches are ready for the following distros:RHEL6OpenVZCloudLinux 6 HybridOracle Enterprise Linux 6Oracle Enterprise Linux 7CentOS 7CentOS 6CentOS 6 PlusCloudLinux 6CloudLinux 7To deploy them, edit /etc/sysconfig/kc...
Continue reading
  3522 Hits
  0 Comments