New updated kernel v.4.10.0-305.10.2.2 and kernel module kmod-lve-2.0-35 for CloudLinux 8 and CloudLinux 7 Hybrid have been scheduled for gradual rollout from our production repository.
Warning!
It is mandatory to update the kernel with the module together. A new kernel module is required for the correct work of the kernel.
Rollout slot: 1
Rolled out to: 0.2%
ETA for 100% rollout: August, 12
Changelog
kernel-4.18.0-305.10.2.2.lve.el8.x86_64
- CLKRN-726: CVE-2020-27170 bpf: Add sanity check for upper ptr_limit
- CLKRN-726: CVE-2020-27170: bpf: Simplify alu_limit masking for pointer arithmetic
- CLKRN-726: CVE-2020-27170: bpf: Fix off-by-one for area size in creating mask to left
- CLKRN-726: CVE-2020-27170: bpf: Prohibit alu ops for pointer types not defining ptr_limit
kernel-4.18.0-305.10.2.2.lve.el7h.x86_64
- CLKRN-726: CVE-2020-27170 bpf: Add sanity check for upper ptr_limit
- CLKRN-726: CVE-2020-27170: bpf: Simplify alu_limit masking for pointer arithmetic
- CLKRN-726: CVE-2020-27170: bpf: Fix off-by-one for area size in creating mask to left
- CLKRN-726: CVE-2020-27170: bpf: Prohibit alu ops for pointer types not defining ptr_limit
kmod-lve-2.0-35
- Bump version (build with 4.10.0-305.10.2.2)
How to update
CloudLinux 7 Hybrid:
yum install kernel-4.18.0-305.10.2.2.lve.el7h.x86_64
kmod-lve-2.0-35.el7h.x86_64CloudLinux 8:
yum install kernel-4.18.0-305.10.2.2.lve.el8.x86_64
kmod-lve-2.0-35.el8.x86_64Immediate update (via bypass)
CloudLinux 7 Hybrid:
yyum install kernel-4.18.0-305.10.2.2.lve.el7h.x86_64
kmod-lve-2.0-35.el7h.x86_64 --enablerepo=cloudlinux-rollout-1-bypassCloudLinux 8:
yum install kernel-4.18.0-305.10.2.2.lve.el8.x86_64
kmod-lve-2.0-35.el8.x86_64 --enablerepo=cloudlinux-rollout-1-bypass
