CloudLinux 6 kernel v. 1.4.79 has been scheduled for gradual rollout

 

kernel

CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.79 has been scheduled for gradual rollout from our production repository.

Rollout slot: 1

Rolled out to: 0.2%

ETA for 100% rollout: July, 30th

Changelog

  • CKSIX-255: tcp: Fix "old stuff" D-SACK causing SACK to be treated as D-SACK
  • CKSIX-255: x86/cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR
  • CKSIX-255: KVM: x86: Don't let user space set host-reserved cr4 bits
  • CKSIX-255: KVM: x86: Protect kvm_lapic_reg_write() from the Spectre-v1/L1TF attacks
  • CKSIX-255: KVM: x86: Protect ioapic_write_indirect() from the Spectre-v1/L1TF attacks
  • CKSIX-255: KVM: x86: Protect ioapic_read_indirect() from the Spectre-v1/L1TF attacks
  • CKSIX-255: KVM: x86: Refactor picdev_write() to prevent the Spectre-v1/L1TF attacks
  • CKSIX-255: tcp: Clear tp->total_retrans in tcp_disconnect()
  • CKSIX-255: CVE-2020-0543: x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation
  • CKSIX-255: x86/cpu: Add the 'table' argument to cpu_matches()
  • CKSIX-255: x86/cpu: Add a steppings field to struct x86_cpu_id
  • CKSIX-255: x86/cpu: Rename cpu_data.x86_mask to cpu_data.x86_stepping
  • CLKRN-595: Added netconsole's oops_only feature for logging to Sentry
  • CLKRN-595: Fix kmodlve compilation on CloudLinux 6

Install command

yum install kernel-2.6.32-954.3.5.lve1.4.79.el6

Immediate install (via bypass)

yum install kernel-2.6.32-954.3.5.lve1.4.79.el6 --enablerepo=cloudlinux-rollout-1-bypass

CloudLinux 6 kernel v. 1.4.79 has been scheduled for gradual rollout

 

kernel

CloudLinux 6 kernel version 2.6.32-954.3.5.lve1.4.79 has been scheduled for gradual rollout from our production repository.

Rollout slot: 1

Rolled out to: 0.2%

ETA for 100% rollout: July, 30th

Changelog

  • CKSIX-255: tcp: Fix "old stuff" D-SACK causing SACK to be treated as D-SACK
  • CKSIX-255: x86/cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR
  • CKSIX-255: KVM: x86: Don't let user space set host-reserved cr4 bits
  • CKSIX-255: KVM: x86: Protect kvm_lapic_reg_write() from the Spectre-v1/L1TF attacks
  • CKSIX-255: KVM: x86: Protect ioapic_write_indirect() from the Spectre-v1/L1TF attacks
  • CKSIX-255: KVM: x86: Protect ioapic_read_indirect() from the Spectre-v1/L1TF attacks
  • CKSIX-255: KVM: x86: Refactor picdev_write() to prevent the Spectre-v1/L1TF attacks
  • CKSIX-255: tcp: Clear tp->total_retrans in tcp_disconnect()
  • CKSIX-255: CVE-2020-0543: x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation
  • CKSIX-255: x86/cpu: Add the 'table' argument to cpu_matches()
  • CKSIX-255: x86/cpu: Add a steppings field to struct x86_cpu_id
  • CKSIX-255: x86/cpu: Rename cpu_data.x86_mask to cpu_data.x86_stepping
  • CLKRN-595: Added netconsole's oops_only feature for logging to Sentry
  • CLKRN-595: Fix kmodlve compilation on CloudLinux 6

Install command

yum install kernel-2.6.32-954.3.5.lve1.4.79.el6

Immediate install (via bypass)

yum install kernel-2.6.32-954.3.5.lve1.4.79.el6 --enablerepo=cloudlinux-rollout-1-bypass
imunify-logo

WEB SERVER SECURITY BLOG

Subscribe to CloudLinux Newsletter