RSS

#security

by / Thursday, 09 March 2017
Major vulnerability CVE-2017-2636 found in Linux kernels that affects many distributions

A new major local privilege escalation vulnerability in the Linux kernel was disclosed on March 7th by Alexander Popov (see CVE-2017-2636). It is a race condition in drivers/tty/n_hdlc.c in the Linux kernel through 4.10.1 that allows local users to gain privileges or cause a denial of service...

Continue reading

Topic: in KernelCare Blog


by / Wednesday, 22 February 2017
Security warning: major vulnerability found in Linux kernels that affects most kernels

A new major local privilege escalation vulnerability in the Linux kernel was disclosed today by Andrey Konovalov (see CVE-2017-6074). It is a memory corruption vulnerability where the same memory location is freed by kernel twice. The vulnerability can be exploited to escalate privileges and...

Continue reading

Topic: in KernelCare Blog


by / Thursday, 21 April 2016
HardenedPHP - another day, another security fix

Older versions of PHP are like swiss cheese - they are full of holes. More and more known holes appear with every passing day for PHP version 5.4 and older … holes that no one patches. This is where HardenedPHP comes in - it patches those holes so that your servers can remain secure.

On Mar...

Continue reading

Topic: in CloudLinux OS Blog


by / Wednesday, 02 March 2016
openssl security updates released for CloudLinux

Updated openssl packages that fix two security issues are now available for CloudLinux 5 (openssl-0.9.8e-39.el5_11), CloudLinux 6 (openssl-1.0.1e-42.el6_7.4) and CloudLinux 7 (openssl-1.0.1e-51.el7_2.4).

Changelog:

  • CVE-2015-3197 (find details on the link 

Continue reading

Topic: in CloudLinux OS Blog


by / Friday, 13 March 2015
KernelCare protection against Rowhammer privilege escallation

The rmemory hardware issue "Rowhammer" was recently discovered to allows privileged escalation. The issue can be mitigated (at least in its current form) by preventing user from reading /proc/$(pid)/pagemap, /proc/kpageflags, /proc/kpagecount files. Yet, this protection is not available from...

Continue reading

Topic: in KernelCare Blog


by / Monday, 29 September 2014
Beta: Better fix for Shellshock bash vulnerability
As shellshock vulnerability keeps giving, we were working on protecting our customers with something more durable then a band aid patches.

The problem with shellshock is that bash allows function imports via environmental variables. It tries to parse them, and even execute them. As bash parser...

Continue reading

Topic: in CloudLinux OS Blog


by / Friday, 26 September 2014
update for bash vulnerability CVE-2014-7169
The update fixes bash vulnerability CVE-2014-7169. Updated bash packages are available in all CloudLinux channels.

To update your server, please run:
$ yum clean all
$ yum update bash

Continue reading

Topic: in CloudLinux OS Blog


by / Wednesday, 24 September 2014
update for bash remote vulnerability CVE-2014-6271
The update the fixes bash remote vulnerability CVE-2014-6271 had been fixed, and updated bash packages are available in all CloudLinux channels.

To update your server, please run:
$ yum clean all
$ yum update bash

Continue reading

Topic: in CloudLinux OS Blog


by / Tuesday, 08 April 2014
Important CloudLinux 6 openssl update
New package openssl-1.0.1e-16.el6_5.7 has been released earlier today that fixes critical security issue
CVE-2014-0160 , details could be found here:
https://rhn.redhat.com/errata/RHSA-2014-0376.html
http://lists.centos.org/pipermail/centos-announce/2014-April/020249.html

To update it...

Continue reading

Topic: in CloudLinux OS Blog


by / Monday, 23 December 2013
CageFS 5.2-15 - Security Update for cPanel servers
An issue was discovered by Rack911.com team that allows reseller to disable CageFS by carefully crafted URL on cPanel servers.
This update fixes the issue:

To update:
$ yum update cagefs

Continue reading

Topic: in CloudLinux OS Blog


1 2 3