Linux distributions took Dirty Cow vulnerability seriously, releasing patches as quickly as possible. Some did better than others. Here, we’ve put together a visual chart of when major Linux distributions have released their patches, and when live patch technologies, like our own KernelCare
(which supports most distributions
) and Oracle’s Ksplice did*. I think our kernel security team did pretty well, but of course, we always strive to address critical vulnerabilities as soon as we possibly can:
Our KernelCare team has been releasing patches super-fast. For example, to combat Dirty Cow, patches in KernelCare have been released on October 21st for RHEL, Debian, Ubuntu, CloudLinux OS, CentOS, and OpenVZ. For current customers, patches become available within 4 hours after their release - this is how often our agent checks for new patches - and of course customers were able to manually (without a reboot) kick off the rebootless kernel update at any time. For new customers, even new trial accounts, the fix would happen upon KernelCare installation - and also without a reboot.
KernelCare supports approximately 800 kernels out-of-the-box, but it also supports custom kernel live patching.
Check out KernelCare - our free 30 trial does not require any credit card information, and even with the trial, it brings your kernel security up to date, whether you decide to keep the service or not.
*Note: We tried to be as accurate as possible displaying this information, but if you see any inconsistencies, please do let us know in the comments section below, and we'll correct it promptly.