KernelCare Blog - KernelCare update for OpenVZ, PCS and CentOS/RHEL 6 kernels - PSBM-28104
KernelCare Blog

For more information on the latest vulnerability (CVE-2018-12130, CVE-2018-12126, CVE-2018-12127, and CVE-2019-11091),
please refer to our blog post

KernelCare update for OpenVZ, PCS and CentOS/RHEL 6 kernels - PSBM-28104

OpenVZ, Virtuozzo, PCS kernels vzkernel-2.6.32-042stab092.1 and vzkernel-2.6.32-042stab092.2 as well as RHEL/CentOS 6.x kernels kernel-2.6.32-431.20.3.el6 are patched against recent bug when a container could fail to restart, remaining in the 'mounted' state (#PSBM-28104). The issue could also be triggered by an unprivileged user in any container, resulting in a memory leak and a potential DoS attack.

Systems with AUTO_UPDATE=True (DEFAULT) in /etc/sysconfig/kcare/kcare.conf will automatically update, and no action is needed for them.

You can manually update the server by running:
# /usr/bin/kcarectl --update


CVEs: Not assigned yet


Details:
  • PSBM-28104 a bug when a container could fail to restart, remaining in the 'mounted' state
KernelCare update for all versions of RHEL/CentOS/...
Another bugfix release: lve-stats 0.10-31.2
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Tuesday, 18 June 2019

Captcha Image