CloudLinux Blog - Beta: СloudLinux 7 and CloudLinux 6 Hybrid kernel with the fix for TCP SACK PANIC vulnerability is released

Beta: СloudLinux 7 and CloudLinux 6 Hybrid kernel with the fix for TCP SACK PANIC vulnerability is released

kernel_updated2

CloudLinux 7 and CloudLinux 6 Hybrid kernel version 3.10.0-962.3.2.lve1.5.25.11 is now available for download from our updates-testing repository.

You can find more about TCP SACK PANIC vulnerability in this post.

Changelog:

  • CLKRN-421: ratelimit memcg oom message entries to dmesg
  • CLKRN-482: CVE-2019-11477: SACK Panic
  • CLKRN-483: CVE-2019-11478: SACK Slowness or Excess Resource Usage
  • CLKRN-485: CVE-2019-11479: Excess Resource Consumption Due to Low MSS Values

To update a kernel, please use the following command.

CloudLinux 7:

yum install kernel-3.10.0-962.3.2.lve1.5.25.11.el7 --enablerepo=cloudlinux-updates-testing

CloudLinux 6 Hybrid:

yum install kernel-3.10.0-962.3.2.lve1.5.25.11.el6h --enablerepo=cloudlinux-hybrid-testing
Beta: LVE-Stats, Alt-Python27-cllib, and LVE-Utils...
Modern UI and improved usability: now the updated...
 

Comments 1

Guest - Dewlance on Friday, 21 June 2019 02:25

Is Test kernel secure and good for production use?

Is Test kernel secure and good for production use?
Already Registered? Login Here
Guest
Sunday, 26 January 2020

Captcha Image

By submitting your comment, you agree with Cloudlinux Privacy Policy