14 DAY TRIAL // CloudLinux's Mykola Naugolnyi announced today, April 5, 2017, the availability of a new Beta kernel update for users of the CloudLinux 7 operating system series, patching a couple of vulnerabilities discovered lately.
The announcement comes just one day after CloudLinux released a new stable kernel version for CloudLinux 7 and CloudLinux 6 Hybrid users, which included a fix for an out-of-bounds heap access security issue in XFRM framework of the Linux kernel, which was patched upstream in Red Hat Enterprise Linux 7.
Today's kernel update is only for CloudLinux 7 users using the Beta channel, and it patches CVE-2017-2647 and CVE-2017-7184 security vulnerabilities, which are also backported from the repositories of the Red Hat Enterprise Linux 7 operating system.
While CVE-2017-2647 is a null pointer dereference vulnerability discovered in Linux kernel's keyring_search_iterator, which could allow an unprivileged local user to crash the system or gain root access, CVE-2017-2647 is the out-of-bounds kernel heap access vulnerability was found in the XFRM framework.
CloudLinux 7 users on the Beta channel are urged to update the kernel packages to version 3.10.0-427.36.1.lve1.4.45 as soon as possible. To update, simply open your favorite terminal emulator or switch to the virtual console and run the following command. Make sure you reboot your machine once the kernel update as installed.
yum install kernel-3.10.0-427.36.1.lve1.4.45.el7 kmod-lve-1.4-45.el7 --enablerepo=cloudlinux-updates-testing