bugfix - CloudLinux Blog
Tags
panic

Don’t panic about TCP SACK PANIC—we’re working on it

panic
Recently, TCP networking vulnerabilities have been discovered in FreeBSD and Linux kernels by Netflix. There are three flaws, one of them is rated by severity as Important ( CVE-2019-11477 ), and two as Moderate ( CVE-2019-11478 and CVE-2019-11479 ). What is the problem? The flaws use the Maximum Segment Size (MSS) and TCP Selective Acknowledgement...
Continue reading
Recent Comments
Ivan Zhmud
Hello Ryan. It will be in 2-3 working days. Follow please for our updates https://www.kernelcare.com/blog/... Read More
Thursday, 20 June 2019 16:55
Inessa Atmachian
Hi Paul, we are going to release the kernel with the fix for CloudLinux 7 Hybrid in the next week.
Thursday, 20 June 2019 19:26
  4819 Hits
  5 Comments
mds3
Tags:

Let us subject MDS vulnerability to the glare of truth

mds3
Ok, let me throw a little light on the last release of the CloudLinux 7 and CloudLinux 6 kernel with the MDS vulnerability patch. MDS vulnerability explanation In the last three days, we’ve received a whole bunch of questions like Should I disable Hyper-Threading or not? and How Hyper-Threading disabling can impact performance? So, here we ar...
Continue reading
Recent Comments
Ivan Zhmud
Hello, Jeff! The table above should the same as the Intel's table in pdf. Just in our table is used classic cpuid and in PDF is us... Read More
Friday, 24 May 2019 21:35
Inessa Atmachian
Hi Jeff, We are sorry, but we are still investigating the problem. We will keep you with updates in this blog post.... Read More
Monday, 27 May 2019 15:35
Ivan Zhmud
Hello Jeff, we've released the new kernel with fixed checker which should show the correct status. You can find details here https... Read More
Thursday, 30 May 2019 14:01
  3425 Hits
  5 Comments
MDS-fixed

CloudLinux 6 kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.64 with a fix for MDS vulnerability is now available for download from our production repository. Changelog: CKSIX-218: x86 MDS mitigations:: CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling; CVE-2018-12130 MFBDS Microarchitectural Fill Buffer Data Sampling; CVE-2018-12127 MLPDS Mi...
Continue reading
Recent Comments
Inessa Atmachian
Hello Deyan, Frankly speaking, we missed the microcode_ctl in our update command. Sorry for that — MDS vulnerability made too muc... Read More
Tuesday, 21 May 2019 08:54
  4504 Hits
  2 Comments
MDS-fixed

Beta: CloudLinux 6 kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.64 with a fix for MDS vulnerability is now available for download from our updates-testing repository. Changelog: CKSIX-218: x86 MDS mitigations: CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling; CVE-2018-12130 MFBDS Microarchitectural Fill Buffer Data Sampling; CVE-2018-12127 MLPD...
Continue reading
  2114 Hits
  2 Comments
MDS-fixed

Beta: СloudLinux 7 and CloudLinux 6 Hybrid kernel is available with a fix for MDS vulnerability

MDS-fixed
CloudLinux 7 and CloudLinux 6 Hybrid kernel version 3.10.0-962.3.2.lve1.5.25.8 with a fix for MDS vulnerability is now available for download from our updates-testing repository. Changelog: CLKRN-457: fix KABI breakage; CLKRN-458: x86 MDS mitigations: CVE-2018-12126 MSBDS Microarchitectural Store Buffer Data Sampling; CVE-2018-12130 MFBDS Microarch...
Continue reading
  2079 Hits
  0 Comments
Service-Unavailable
Tags:

Unexpected issue caused by the latest alt-PHP update

Service-Unavailable
Updated 1:26 PM (PT), April 11, 2019 The fix for this package is released. See https://www.cloudlinux.com/cloudlinux-os-blog/entry/alt-php-updated-1-75 . We’ve found an issue in the latest alt-PHP stable update — a package changes the /etc/cl.selector/symlinks.rules file. And this may cause unexpected behavior of the PHP Selector. How t...
Continue reading
Recent Comments
Darya Malyavkina
Hello Ivan! The fix will be available in a few hours. But if you do not want to wait, you can do the actions described in the pos... Read More
Thursday, 11 April 2019 12:27
Darya Malyavkina
Only If you have some problems with selector after latest update. For example, you selected ea-php72, but after updating alt-php7... Read More
Thursday, 11 April 2019 13:12
Inessa Atmachian
Hi Steve, Sorry for puzzling you. If you face issues with PHP Selector and if you already have a backup of the etc/cl.selector/sy... Read More
Thursday, 11 April 2019 13:28
  2560 Hits
  13 Comments
easyapache

ea-apache24-2.4.39-1.cloudlinux major security update

easyapache
New updated ea-apache24-2.4.39-1.cloudlinux package with the major security fix is now available for download from our production repository. Changelog: ea-apache24-2.4.39-1.cloudlinux EA4D-151: Apache Update: Drop 2.4.38, update to 2.4.39. You can find full information on the following link: https://httpd.apache.org/security/vulnerabilities_24.htm...
Continue reading
  2114 Hits
  0 Comments
easyapache

Beta: ea-apache24-2.4.39-1.cloudlinux major security update

easyapache
New updated ea-apache24-2.4.39-1.cloudlinux package with the major security fix is now available for download from our updates-testing repository. Changelog: ea-apache24-2.4.39-1.cloudlinux EA4D-151: Apache Update: Drop 2.4.38, update to 2.4.39. You can find full information on the following link: https://httpd.apache.org/security/vulnerabilities_2...
Continue reading
Recent Comments
Darya Malyavkina
Hello Tommy! You don't need to restart anything, it happens automatically :-) Usually we release package to stable one week afte... Read More
Wednesday, 03 April 2019 18:26
Darya Malyavkina
Hello Pedro! Check list of repo yum repolist --enablerep=* | grep "cl" Maybe you have other name of this repository... Read More
Thursday, 04 April 2019 15:24
  2474 Hits
  5 Comments
L1 Terminal Fault (L1TF) patches are available in TEST feed

L1 Terminal Fault (L1TF) patches are available in TEST feed

L1 Terminal Fault (L1TF) patches are available in TEST feed
We are glad to announce that the patches for the fix of L1 Terminal Fault (L1TF) are now available for download from our test feed. The patches are ready for the following distros: RHEL6 OpenVZ CloudLinux 6 Hybrid Oracle Enterprise Linux 6 Oracle Enterprise Linux 7 CentOS 7 CentOS 6 CentOS 6 Plus CloudLinux 6 CloudLinux 7 To deploy them, edit /etc/...
Continue reading
  2567 Hits
  0 Comments
Imunify360 3.8.7 Beta is here

Imunify360 3.8.7 Beta is here

Imunify360 3.8.7 Beta is here
We are pleased to announce that a new, updated Imunify360 Beta version 3.8.7 is now available. This latest version embodies further improvements of the product as well as fixes. Should you encounter any problems with the product, or have any questions, comments, or suggestions, please contact our support team at cloudlinux.zendesk.com: the Imunify3...
Continue reading
  1348 Hits
  0 Comments