New updated kernel v.4.10.0-305.10.2.2 and kernel module kmod-lve-2.0-35 for CloudLinux 8 and CloudLinux 7 Hybrid are now available for download from our updates-testing repository.

Warning!

It is mandatory to update the kernel with the module together. A new kernel module is required for the correct work of the kernel.

Changelog

kernel-4.18.0-305.10.2.2.lve.el8.x86_64

• CLKRN-726: CVE-2020-27170 bpf: Add sanity check for upper ptr_limit
• CLKRN-726: CVE-2020-27170: bpf: Simplify alu_limit masking for pointer arithmetic
• CLKRN-726: CVE-2020-27170: bpf: Fix off-by-one for area size in creating mask to left
• CLKRN-726: CVE-2020-27170: bpf: Prohibit alu ops for pointer types not defining ptr_limit

kernel-4.18.0-305.10.2.2.lve.el7h.x86_64

• CLKRN-726: CVE-2020-27170 bpf: Add sanity check for upper ptr_limit
• CLKRN-726: CVE-2020-27170: bpf: Simplify alu_limit masking for pointer arithmetic
• CLKRN-726: CVE-2020-27170: bpf: Fix off-by-one for area size in creating mask to left
• CLKRN-726: CVE-2020-27170: bpf: Prohibit alu ops for pointer types not defining ptr_limit

kmod-lve-2.0-35

• Bump version (build with 4.10.0-305.10.2.2)

yum install kernel-4.18.0-305.10.2.2.lve.el7h.x86_64
kmod-lve-2.0-35.el7h.x86_64 --enablerepo=cl7h_beta

yum install kernel-4.18.0-305.10.2.2.lve.el8.x86_64
kmod-lve-2.0-35.el8.x86_64  --enablerepo=cloudlinux-updates-testing