All users are urged to update their systems immediately

May 8, 2017 23:25 GMT  ·  By

CloudLinux's Mykola Naugolnyi announced today the availability of new stable kernels for the CloudLinux 7, CloudLinux 6, and CloudLinux 6 Hybrid operating systems.

The updated kernel is available for download right now from the production repository of the CloudLinux 7, CloudLinux 6 Hybrid, and CloudLinux 6 operating systems, versioned 3.10.0-427.36.1.lve1.4.47. It replaces kernel 3.10.0-427.36.1.lve1.4.44 on CloudLinux 7 and Hybrid, as well as kernel 2.6.32-673.26.1.lve1.4.25 on CloudLinux 6.

These new CloudLinux kernels appear to include a fix for a recently discovered security issue in the upstream kernel packages of the Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6 operating systems where an NFSv3 server couldn't properly handle payload bounds checking of WRITE requests. The issue is marked by Red Hat as "Important" and was reported by Ari Kauppi.

"The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c," reads the CVE-2017-7895 security advisory.

Here's how to update your CloudLinux systems

All CloudLinux 7, CloudLinux 6 and CloudLinux 6 Hybrid users are urged to update their installations to the new kernel version as soon as possible. To install the kernel, please open a terminal emulator or switch to a virtual console and run the following commands for the respective CloudLinux system installed on your machine(s). Don't forget to reboot the computer(s) after installing the new kernel.

For CloudLinux 7:
yum clean all
yum install kernel-3.10.0-427.36.1.lve1.4.47.el7 kmod-lve-1.4-47.el7
For CloudLinux 6 Hybrid:
yum clean all
yum install kernel-3.10.0-427.36.1.lve1.4.47.el6h kmod-lve-1.4-47.el6h
For CloudLinux 6:
yum clean all
yum install kernel-2.6.32-673.26.1.lve1.4.27.el6 kmod-lve-1.4-27.el6