We will be performing planned CLN hardware upgrade from 1:00 am EST (6:00 am GMT) to 4:00 am EST (9:00 am GMT) on Monday, January 22nd, 2018. During that time you might experience issues with accessing CLN, registering new servers, converting servers to CloudLinux, registering new IP-based licenses using partner API, as well us updating servers. It...

Update [May 29, 2018 12:25am PT] Meltdown fixes for Ubuntu 16.04 are now on test. To deploy them:edit /etc/sysconfig/kcare/kcare.conf Add:PREFIX=test Run:kcarectl --update TAGNAME: update-2018-05-29-test-1ubuntu-xenial:  CVE-2017-5754: Systems with microprocessors utilizing speculative execution and    indirect branch prediction may ...

Updated: Dec 7, 2017, 8AM PT Our previous patch provided the fix of ext4 bug with KernelCare included a bug in unpatch. The bug was triggered by latest patch, and caused some number of servers to crash. The effect of the bug is that servers that use ext4 will crash. If they didn't crash - they will not crash now. Note that the new patch that trigge...

Please note that we have updated a blog post The Symlink Protection patchset. We have eliminated errors and implemented changes. Now you can confidently use these instructions to get the patches. We apologize for the inconveniences.

A few weeks ago we released the KernelCare "Extra" Patchset with the security fixes and the symlink protection available to all KernelCare customers running CentOS kernels. Today we are pleased to share that you can get the Symlink Protection Patchset for CentOS 6 and 7 at no cost, even if you don’t have licenses of KernelCare. We’ve been discussin...

The KernelCare extra patchset includes all the security fixes from KernelCare for CentOS 6 and CentOS 7, as well as the symlink protection against a symlink race. A symlink race attack is often used against shared hosting servers. It allows a malicious user to serve files that belong to other users by creating a symbolic link to those files. It is ...

A race condition in Linux kernel was disclosed today, August 3rd, 2017 (see CVE-2017-7533). It can be exploited to allows an unprivileged local user to gain root access to the server. Currently, there is an existing working exploit allowing privileges escalation for 32 bit kernels. It is unclear whether such exploit exists for 64 bit kernels, but s...

I am super thrilled to let you know that we have published a toolset for livepathing of user space software, called LibCare, to GitHub. It is released under the GPL2 license and allows software developers to develop and apply patches to their running software without the need to restart it. Similar to our commercially available KernelCare service, ...

[Last updated Jun 22, 12:05PM PDT] A new major local privilege escalation vulnerability in the Linux kernel was disclosed yesterday, June 19th, 2017 (CVE-2017-1000364). The vulnerability can be exploited to allows an unprivileged local user to gain root access to the server. The Qualys' security advisory shows practical methods for circumventing an...

UPDATE: Mar 30 - 10am pacific timezone. 24h feed was updated with the same issue due to technician incorrectly removing "at" job. This has been fixed shortly, but some systems have been affected. We want to apologize for the KernelCare incident that affected some of our customers yesterday. Unfortunately, the bug in POSIX ACL patch for CVE-2016-709...