The patch for CloudLinux OS 7 is here if you are running KernelCare. Fixed CloudLinux OS 7 kernel is coming soon. CloudLinux OS 5 & 6 are not affected.
A new vulnerability CVE-2016-8655 in the Linux kernel was discovered by Philip Pettersson. It is a race-condition in Linux (net/packet/af_packet.c) that can be exploited to gain kernel code execution from unprivileged processes. This exploit may lead to a privilege escalation, cause a denial of service attacks (server crash) and information leaks, give the ability to run codes with administrative privileges, and much more.
- The patch for fixing the CVE-2016-8655 issue in CloudLinux OS 7 is now available using KernelCare.
- We are working on releasing CloudLinux 7 kernel that fixes the issue soon.
- CloudLinux OS 5 & 6 are NOT affected.
Stand by for updates.