Kernel vulnerability in centos 6 and mitigation
Posted: Wed May 15, 2013 1:28 am
Hello !
A kernel privilege escalation exploitable bug has been discovered in Centos/RedHat Linux 6.
https://bugzilla.redhat.com/show_bug.cgi?id=962792
As a result we are issuing this emergency maintenance, upgrading the kernel to the patched version and rebooting the servers.
This will affect OpenVZ servers for now, we are not sure yet if KVM will need this upgrade, we may decide to do it anyway, just to make sure, even though users dont have access to the host kernel and as such the vulnerability is not exploitable by non-admin users, it will be a scheduled maintenance, probably over the week-end.
Xen servers are not affected by this vulnerability, therefore no maintenance is necessary at this time.
We advise everyone running on KVM and Xen to keep their systems up to date, upgrade the kernel as soon as your distribution releases the patched version (most of those affected did already, so far). Keeping your OS up to date should be a maintenance priority for everyone.
A kernel privilege escalation exploitable bug has been discovered in Centos/RedHat Linux 6.
https://bugzilla.redhat.com/show_bug.cgi?id=962792
As a result we are issuing this emergency maintenance, upgrading the kernel to the patched version and rebooting the servers.
This will affect OpenVZ servers for now, we are not sure yet if KVM will need this upgrade, we may decide to do it anyway, just to make sure, even though users dont have access to the host kernel and as such the vulnerability is not exploitable by non-admin users, it will be a scheduled maintenance, probably over the week-end.
Xen servers are not affected by this vulnerability, therefore no maintenance is necessary at this time.
We advise everyone running on KVM and Xen to keep their systems up to date, upgrade the kernel as soon as your distribution releases the patched version (most of those affected did already, so far). Keeping your OS up to date should be a maintenance priority for everyone.