RSS
Jul 23, 2021 10:25:25 AM
Inessa Atmachian
Inessa Atmachian
Inessa Atmachian, Technical Writer at CloudLinux. Crafting comprehensive product documentation and keeping users informed with release notes and updates.

CloudLinux OS 6/7/8 kernel with the fix for the CVE-2021-22555 and the CVE-2021-33909 has been scheduled for gradual rollout

kernel

CloudLinux OS 6/7/8 kernel with the fix for the CVE-2021-22555 and the CVE-2021-33909 has been scheduled for gradual rollout from our production repository.

Rollout slot: 1

Rolled out to: 25%

ETA for 100% rollout: July, 30

Changelog

kernel-2.6.32-954.3.5.lve1.4.85.el6

* Package with the fix for the CVE-2021-33909 for CloudLinux OS 6 will be available on Monday.

  • CKSIX-279: CVE-2021-22555: netfilter: x_tables: add missing tables zeroing
  • CKSIX-279: CVE-2021-22555: netfilter: x_tables: fix compat match/target pad out-of-bound write

kernel-4.18.0-305.10.2.lve.el8.x86_64

  • Based on rhel8-305.10.2
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write
  • Fixed CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation

kernel-4.18.0-305.10.2.lve.el7h.x86_64

  • Based on rhel8-305.10.2
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write
  • Fixed CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation

kernel-3.10.0-962.3.2.lve1.5.60.el7

  • CLKRN-797: CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write

kernel-3.10.0-962.3.2.lve1.5.60.el6h

  • CLKRN-797: CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write

Update command

CloudLinux OS 6

yum install kernel-2.6.32-954.3.5.lve1.4.85.el6

CloudLinux OS 8

yum install kernel-4.18.0-305.10.2.lve.el8.x86_64

CloudLinux OS 7 hybrid

yum install kernel-4.18.0-305.10.2.lve.el7h.x86_64

CloudLinux OS 7

yum install kernel-3.10.0-962.3.2.lve1.5.60.el7

CloudLinux OS 6 hybrid

yum install kernel-3.10.0-962.3.2.lve1.5.60.el6h

Immediate Update (via bypass)

CloudLinux OS 6

yum install kernel-2.6.32-954.3.5.lve1.4.85.el6 --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux OS 8

yum install kernel-4.18.0-305.10.2.lve.el8.x86_64 --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux OS 7 hybrid

yum install kernel-4.18.0-305.10.2.lve.el7h.x86_64 --enablerepo=cloudlinux-rollout-1-bypass --releasever=7h

CloudLinux OS 7

yum install kernel-3.10.0-962.3.2.lve1.5.60.el7 --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux OS 6 hybrid

yum install kernel-3.10.0-962.3.2.lve1.5.60.el6h --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux OS 6/7/8 kernel with the fix for the CVE-2021-22555 and the CVE-2021-33909 has been scheduled for gradual rollout

Jul 23, 2021 10:25:25 AM
Inessa Atmachian

kernel

CloudLinux OS 6/7/8 kernel with the fix for the CVE-2021-22555 and the CVE-2021-33909 has been scheduled for gradual rollout from our production repository.

Rollout slot: 1

Rolled out to: 25%

ETA for 100% rollout: July, 30

Changelog

kernel-2.6.32-954.3.5.lve1.4.85.el6

* Package with the fix for the CVE-2021-33909 for CloudLinux OS 6 will be available on Monday.

  • CKSIX-279: CVE-2021-22555: netfilter: x_tables: add missing tables zeroing
  • CKSIX-279: CVE-2021-22555: netfilter: x_tables: fix compat match/target pad out-of-bound write

kernel-4.18.0-305.10.2.lve.el8.x86_64

  • Based on rhel8-305.10.2
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write
  • Fixed CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation

kernel-4.18.0-305.10.2.lve.el7h.x86_64

  • Based on rhel8-305.10.2
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write
  • Fixed CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation

kernel-3.10.0-962.3.2.lve1.5.60.el7

  • CLKRN-797: CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write

kernel-3.10.0-962.3.2.lve1.5.60.el6h

  • CLKRN-797: CVE-2021-33909: seq_file: disallow extremely large seq buffer allocation
  • CLKRN-795: CVE-2021-22555: x_tables: fix compat match/target pad out-of-bound write

Update command

CloudLinux OS 6

yum install kernel-2.6.32-954.3.5.lve1.4.85.el6

CloudLinux OS 8

yum install kernel-4.18.0-305.10.2.lve.el8.x86_64

CloudLinux OS 7 hybrid

yum install kernel-4.18.0-305.10.2.lve.el7h.x86_64

CloudLinux OS 7

yum install kernel-3.10.0-962.3.2.lve1.5.60.el7

CloudLinux OS 6 hybrid

yum install kernel-3.10.0-962.3.2.lve1.5.60.el6h

Immediate Update (via bypass)

CloudLinux OS 6

yum install kernel-2.6.32-954.3.5.lve1.4.85.el6 --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux OS 8

yum install kernel-4.18.0-305.10.2.lve.el8.x86_64 --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux OS 7 hybrid

yum install kernel-4.18.0-305.10.2.lve.el7h.x86_64 --enablerepo=cloudlinux-rollout-1-bypass --releasever=7h

CloudLinux OS 7

yum install kernel-3.10.0-962.3.2.lve1.5.60.el7 --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux OS 6 hybrid

yum install kernel-3.10.0-962.3.2.lve1.5.60.el6h --enablerepo=cloudlinux-rollout-1-bypass
imunify-logo

WEB SERVER SECURITY BLOG

READ MORE ABOUT WEB SERVER SECURITY

Subscribe to CloudLinux Newsletter

aicpa soc
pci-dss
eu gdpr compliant
© All rights reserved. CloudLinux Inc.
Terms of Use | Privacy Policy | Vulnerability Reporting | Legal | Do Not Sell My Personal Data

Call Sales at +1 (800) 231-7307
Email sales@cloudlinux.com