CloudLinux OS Blog - CloudLinux 6 kernel with the fix for TCP SACK PANIC vulnerability is released
CloudLinux OS Blog

CloudLinux 6 kernel with the fix for TCP SACK PANIC vulnerability is released

kernel_updated2

CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.66 is now available for download from our production repository.

You can find more about TCP SACK PANIC vulnerability in this post.

Changelog:

  • CKSIX-220: CVE-2019-11477: SACK Panic
  • CKSIX-221: CVE-2019-11478: SACK Slowness or Excess Resource Usage
  • CKSIX-222: CVE-2019-11479: Excess Resource Consumption Due to Low MSS Values

To update the kernel, run:

yum install kernel-2.6.32-954.3.5.lve1.4.66.el6
–°loudLinux 7 and CloudLinux 6 Hybrid kernel with t...
Beta: CloudLinux 6 kernel with the fix for TCP SAC...
 

Comments 2

Guest - Guest on Thursday, 27 June 2019 06:41

Are manual mitigations mentioned on the redhat 'resolve' page necessary even after this kernel update?

Are manual mitigations mentioned on the redhat 'resolve' page necessary even after this kernel update?
Kate Grechishkina on Thursday, 27 June 2019 11:48

Hello,
After you apply this kernel update and reboot the server, you are all set. There will be no need to apply the Mitigation steps from the Resolve tab.

Hello, After you apply this kernel update and reboot the server, you are all set. There will be no need to apply the Mitigation steps from the Resolve tab.
Already Registered? Login Here
Guest
Monday, 22 July 2019

Captcha Image