14 DAY TRIAL // CloudLinux's Mykola Naugolnyi announced today, April 4, 2017, the general availability of an updated kernel package for the CloudLinux 7 and CloudLinux 6 Hybrid operating system series.
The new CloudLinux 7 kernel (version 3.10.0-427.36.1.lve1.4.44) is here to fix the CVE-2017-7184 security vulnerability discovered and patched in Red Hat Enterprise Linux 7 operating systems, which Red Hat marked as important and described as an out-of-bounds heap access in the XFRM framework.
"Out-of-bounds kernel heap access vulnerability was found in xfrm, kernel's IP framework for transforming packets. An error dealing with netlink messages from an unprivileged user leads to arbitrary read/write and privilege escalation," reads the Red Hat security advisory.
CloudLinux 7 and CloudLinux 6 Hybrid users using the 3.10.0-427.36.1.lve1.4.43 kernel version on their installations are urged to update to today's 3.10.0-427.36.1.lve1.4.44 kernel as soon as possible. The new kernel version is now available for download from CloudLinux's stable repository.
To update your machines, simply open your favorite terminal emulator or switch to the virtual console and run the commands listed below for the CloudLinux version you're currently using. Please keep in mind to reboot the system once the new kernel update has been successfully installed.
For CloudLinux 7:
yum install kernel-3.10.0-427.36.1.lve1.4.44.el7 kmod-lve-1.4-44.el7
For CloudLinux 6 Hybrid:
yum install kernel-3.10.0-427.36.1.lve1.4.44.el6h kmod-lve-1.4-44.el6h