KernelCare Blog - CloudLinux Blog - Page 2
KernelCare Blog

For more information on the latest vulnerability (CVE-2018-12130, CVE-2018-12126, CVE-2018-12127, and CVE-2019-11091),
please refer to our blog post
Tags:

Release note of kernelcare 2.16-1

We are going to release kernelcare 2.16-1 with updated user text output. In case you have any automation set-up based on the system messages, you can review new messages here    To apply updates run: yum update kernelcare
  1328 Hits
  0 Comments
The worst-kept secret (your password)
Tags:

The worst-kept secret (your password)

The worst-kept secret (your password)
Ineffective passwords continue to be a significant cause of cybersecurity breaches, despite the wealth of advice issued by governments and security companies, and despite the prevalence of password management programs and the enforcement of strict password policies. The latest article by Imunify360’s Greg Zemskov looks into the psychology behind pa...
Continue reading
  1613 Hits
  0 Comments
Kernel Update Methods: 3 Different Ways

Kernel Update Methods: 3 Different Ways

Kernel Update Methods: 3 Different Ways
If variety is the spice of life, then you'll want to know all about the different ways you can update a Linux kernel. This blog post runs the gamut, from a standard command-line update, through the use of 'kexec', and onto the live-patching solutions of which KernelCare is but one. It's a topic that straddles both security and stability: security, ...
Continue reading
  1585 Hits
  0 Comments
While everyone’s out star-gazing, KernelCare shoots ‘Mutagen Astronomy’ back down to earth

While everyone’s out star-gazing, KernelCare shoots ‘Mutagen Astronomy’ back down to earth

While everyone’s out star-gazing, KernelCare shoots ‘Mutagen Astronomy’ back down to earth
It is Fall in the Northern Hemisphere, and everyone’s out gazing into the clear dark skies when they should be indoors looking after their servers. Why?  Because yet another 10-year-old flaw has been found in the Linux kernel, this time in the create_elf_tables() function, that, when subject to an integer overflow condition, can allow root-lev...
Continue reading
  1843 Hits
  0 Comments
Patches for the Integer Overflow Flaw (CVE-2018-14634) are available
Tags:

Patches for the Integer Overflow Flaw (CVE-2018-14634) are available

Patches for the Integer Overflow Flaw (CVE-2018-14634) are available
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to an SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. This issue does not affect systems that do not have a large enough address space to exploit this flaw. Systems with ...
Continue reading
Recent Comments
Inessa Atmachian
Hi Ryan, We believe that the issue is solved and next update would include a fixup module which would prevent XenPV machines from ... Read More
Friday, 28 September 2018 17:50
  1960 Hits
  4 Comments
The low down on high end kernel patching

The low down on high end kernel patching

The low down on high end kernel patching
We’ve just published a Technical White Paper called KernelCare: Live Kernel Patching for Linux . It covers what KernelCare is, how it works and why you need it. We give an overview of setting up custom patch servers, both within and without firewalls, and we show what the patch management GUI looks like. We explain what delayed and sticky patches a...
Continue reading
  1483 Hits
  0 Comments
KernelCare Now Supports the UEK for Oracle Linux
Tags:
UEK

KernelCare Now Supports the UEK for Oracle Linux

KernelCare Now Supports the UEK for Oracle Linux
If you are running the Unbreakable Enterprise Kernel (UEK), which is included as part of Oracle Linux, you already know that it is optimized for stability and security for enterprise cloud workloads. The UEK includes enhancements that benefit Oracle Database, middleware, applications and hardware. It is thoroughly tested and is recommended for all ...
Continue reading
  2304 Hits
  0 Comments
A look at KernelCare, in under 90 seconds

A look at KernelCare, in under 90 seconds

A look at KernelCare, in under 90 seconds
Linux servers have to be rebooted quite often to update security issues that pop up in the kernel. Such reboots usually take time to plan and execute. To minimize the impact on end users, they are often done in the middle of the night and are stressful for sysadmins. These complications lead to delays in updates. Running an insecure kernel is not o...
Continue reading
  1504 Hits
  0 Comments
KernelCare Unsuccessful Release Information

KernelCare Unsuccessful Release Information

KernelCare Unsuccessful Release Information
One of our primary target in KernelCare is to ensure the best customer experience. And the thing we take the most seriously is the releases quality control. Unfortunately, within the last week, we had some servers crashes due to the latest KernelCare release. We have rolled back that release and have prepared a bugfix release which is now available...
Continue reading
  3039 Hits
  2 Comments
Spectre v.2 patches are available in TEST feed

Spectre v.2 patches are available in TEST feed

Spectre v.2 patches are available in TEST feed
We are glad to announce that the patches for the fix of Spectre v.2 (CVE-2017-5715) are now available for download from our test feed. The patches are ready for the following distros: RHEL7 CentOS7 CentOS7-plus PVE-3.10 CloudLinux7 CloudLinux 6 Hybrid Oracle Linux 7 CentOS6 CentOS6-plus OpenVZ PVE-2.6 RHEL 6 Ubuntu-trusty-lts-xenial Ubuntu-xenial U...
Continue reading
  1791 Hits
  0 Comments