bugfix - CloudLinux Blog
Blog
update_general
Tags:

Production: sudo-1.8.6p3-29.el6_9.cloudlinux with CVE-2019-14287 fix for CloudLinux OS 6 released

update_general
New updated sudo-1.8.6p3-29.el6_9.cloudlinux package for CloudLinux OS 6 is now available for download from our production repository.Changelogfixed CVE-2019-14287. You can find details here: https://www.sudo.ws/alerts/minus_1_uid.htmlUpgrade commandyum upgrade sudo
  1416 Hits
  0 Comments
update_general
Tags:

Production: sudo-1.8.23-4.el7.cloudlinux with CVE-2019-14287 fix for CloudLinux OS 7 released

update_general
New updated sudo-1.8.23-4.el7.cloudlinux package for CloudLinux OS 7 is now available for download from our production repository.Changelogfixed CVE-2019-14287. You can find details here: https://www.sudo.ws/alerts/minus_1_uid.htmlUpgrade commandyum upgrade sudo
  2106 Hits
  0 Comments
update_general
Tags:

Beta: sudo-1.8.6p3-29.el6_9.cloudlinux with CVE-2019-14287 fix for CloudLinux OS 6 released

update_general
New updated sudo-1.8.6p3-29.el6_9.cloudlinux package for CloudLinux OS 6 is now available for download from our updates-testing repository.Changelogfixed CVE-2019-14287. You can find details here: https://www.sudo.ws/alerts/minus_1_uid.htmlUpgrade commandyum upgrade sudo --enablerepo=cloudlinux-updates-testing
  1530 Hits
  0 Comments
update_general
Tags:

Beta: sudo-1.8.23-4.el7.cloudlinux with CVE-2019-14287 fix for CloudLinux OS 7 released

update_general
New updated sudo-1.8.23-4.el7.cloudlinux package for CloudLinux OS 7 is now available for download from our updates-testing repository.Changelogfixed CVE-2019-14287. You can find details here: https://www.sudo.ws/alerts/minus_1_uid.htmlUpgrade commandyum upgrade sudo --enablerepo=cloudlinux-updates-testing
  1822 Hits
  0 Comments
panic

Don’t panic about TCP SACK PANIC—we’re working on it

panic
Recently, TCP networking vulnerabilities have been discovered in FreeBSD and Linux kernels by Netflix.There are three flaws, one of them is rated by severity as Important (CVE-2019-11477), and two as Moderate (CVE-2019-11478 and CVE-2019-11479).What is the problem?The flaws use the Maximum Segment Size (MSS) and TCP Selective Acknowledgement (SACK)...
Continue reading
Recent Comments
Guest — Ryan Smith
KernelCare eta?
Thursday, 20 June 2019 16:15
Ivan Zhmud
Hello Ryan. It will be in 2-3 working days. Follow please for our updates https://www.kernelcare.com/blog/... Read More
Thursday, 20 June 2019 16:55
Guest — Paul Roche
Cloudlinux 7 Hybrid?
Thursday, 20 June 2019 19:10
  7050 Hits
  5 Comments
mds3
Tags:

Let us subject MDS vulnerability to the glare of truth

mds3
Ok, let me throw a little light on the last release of the CloudLinux 7 and CloudLinux 6 kernel with the MDS vulnerability patch.MDS vulnerability explanationIn the last three days, we’ve received a whole bunch of questions like Should I disable Hyper-Threading or not? and How Hyper-Threading disabling can impact performance? So, here we are ...
Continue reading
Recent Comments
Guest — Jeff
I'm confused by the microcode availability as the Intel chart doesn't match the list above. Intel's Guidance PDF shows many CPUs ... Read More
Friday, 24 May 2019 20:52
Ivan Zhmud
Hello, Jeff! The table above should the same as the Intel's table in pdf. Just in our table is used classic cpuid and in PDF is us... Read More
Friday, 24 May 2019 21:35
Guest — Jeff
Thanks. However, on multiple E3 and E5 cpus: Yum log shows May 16 02:23:26 Updated: 2:microcode_ctl-1.17-33.11.el6_10.x86_64 Ser... Read More
Saturday, 25 May 2019 19:54
  5669 Hits
  5 Comments
MDS-fixed

CloudLinux 6 kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.64 with a fix for MDS vulnerability is now available for download from our production repository.Changelog:CKSIX-218: x86 MDS mitigations::CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling;CVE-2018-12130 MFBDS Microarchitectural Fill Buffer Data Sampling;CVE-2018-12127 MLPDS Microar...
Continue reading
Recent Comments
Guest — Deyan
Hello, Can you please tell me why you do not suggest to install or upgrade microcode_ctl package with CL6 kernel, like you do wit... Read More
Monday, 20 May 2019 22:56
Inessa Atmachian
Hello Deyan, Frankly speaking, we missed the microcode_ctl in our update command. Sorry for that — MDS vulnerability made too muc... Read More
Tuesday, 21 May 2019 08:54
  6512 Hits
  2 Comments
MDS-fixed

Beta: CloudLinux 6 kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.64 with a fix for MDS vulnerability is now available for download from our updates-testing repository.Changelog:CKSIX-218: x86 MDS mitigations:CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling;CVE-2018-12130 MFBDS Microarchitectural Fill Buffer Data Sampling;CVE-2018-12127 MLPDS Mic...
Continue reading
Recent Comments
Guest — Tro
Do you plan to provide patches for MDS over kernelcare? Thanks
Thursday, 16 May 2019 09:30
Guest — Alexandre
Yes, we are working now on building the KC patches for MDS
Thursday, 16 May 2019 10:11
  4252 Hits
  2 Comments
MDS-fixed

Beta: СloudLinux 7 and CloudLinux 6 Hybrid kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 7 and CloudLinux 6 Hybrid kernel version 3.10.0-962.3.2.lve1.5.25.8 with a fix for MDS vulnerability is now available for download from our updates-testing repository.Changelog:CLKRN-457: fix KABI breakage;CLKRN-458: x86 MDS mitigations:CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling;CVE-2018-12130 MFBDS Microarchitect...
Continue reading
  3960 Hits
  0 Comments
Service-Unavailable
Tags:

Unexpected issue caused by the latest alt-PHP update

Service-Unavailable
Updated 1:26 PM (PT), April 11, 2019The fix for this package is released. See https://www.cloudlinux.com/cloudlinux-os-blog/entry/alt-php-updated-1-75.We’ve found an issue in the latest alt-PHP stable update — a package changes the /etc/cl.selector/symlinks.rules file. And this may cause unexpected behavior of the PHP Selector.How to fi...
Continue reading
Recent Comments
Guest — Ivan Levente
It would be better if you fix the initial update itself, or better yet issue a new update that fixes the previously broken things.... Read More
Thursday, 11 April 2019 12:08
Darya Malyavkina
Hello Ivan! The fix will be available in a few hours. But if you do not want to wait, you can do the actions described in the pos... Read More
Thursday, 11 April 2019 12:27
Guest — Steve
What does this mean: "Restore the same etc/cl.selector/symlinks.rules file from the backup" Makes no sense to me?... Read More
Thursday, 11 April 2019 12:50
  4533 Hits
  13 Comments