CloudLinux's Mykola Naugolnyi announced today, April 4, 2017, the general availability of an updated kernel package for the CloudLinux 7 and CloudLinux 6 Hybrid operating system series.The new CloudLinux 7 kernel (version 3.10.0-427.36.1.lve1.4.44) is here to fix the CVE-2017-7184 security vulnerability discovered and patched in Red Hat Enterprise Linux 7 operating systems, which Red Hat marked as important and described as an out-of-bounds heap access in the XFRM framework.
"Out-of-bounds kernel heap access vulnerability was found in xfrm, kernel's IP framework for transforming packets. An error dealing with netlink messages from an unprivileged user leads to arbitrary read/write and privilege escalation," reads the Red Hat security advisory.
CloudLinux 7 and CloudLinux 6 Hybrid users using the 3.10.... (read more)
from Softpedia News / Linux http://ift.tt/2ozuduF
via IFTTT
No comments:
Post a Comment