Beta: CloudLinux OS 6/7/8 kernel with the fix for the CVE-2021-22555 and CVE-2021-33909 released

A new updated CloudLinux OS 6/7/8 kernel with the fix for the CVE-2021-22555 and the CVE-2021-33909 is now available for download from our updates-testing repository.

Changelog

kernel-2.6.32-954.3.5.lve1.4.85.el6

* Package with the fix for the CVE-2021-33909 for CloudLinux OS 6 will be available on Monday.

• CKSIX-279: CVE-2021-22555: netfilter: x_tables: add missing tables zeroing
• CKSIX-279: CVE-2021-22555: netfilter: x_tables: fix compat match/target pad out-of-bound write

kernel-4.18.0-305.10.2.lve.el8.x86_64

• Based on rhel8-305.10.2
• CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write
• Fixed CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation

kernel-4.18.0-305.10.2.lve.el7h.x86_64

• Based on rhel8-305.10.2
• CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write
• Fixed CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation

kernel-3.10.0-962.3.2.lve1.5.60.el7

• CLKRN-797: CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation
• CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write

kernel-3.10.0-962.3.2.lve1.5.60.el6h

• CLKRN-797: CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation
• CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write

yum install kernel-2.6.32-954.3.5.lve1.4.85.el6 --enablerepo=cloudlinux-updates-testing

yum install kernel-4.18.0-305.10.2.lve.el8.x86_64 --enablerepo=cloudlinux-updates-testing

yum install kernel-4.18.0-305.10.2.lve.el7h.x86_64 --enablerepo=cl7h_beta

yum install kernel-3.10.0-962.3.2.lve1.5.60.el7 --enablerepo=cloudlinux-updates-testing

yum install kernel-3.10.0-962.3.2.lve1.5.60.el6h --enablerepo=cloudlinux-hybrid-testing