CentOS kernel vulnerability - official patch

Posted by: mstauber Category: General

An official kernel update is now available in the CentOS yum repositories which addresses the recently found vulnerabilities.

With an unprecedented speed (same day as RedHat) the CentOS.org team has released an updated CentOS5 kernel: 

kernel-2.6.18-128.7.1.el5

 

This updated kernel fixes two important security holes (CVE-2009-2698 and CVE-2009-2692) which could allow that a local unprivileged user runs a denial of service attack against your server, or which could allow the attacker to gain root privileges.

 

Additionally it fixes a potential memory leak.

 

We recommend that you run "yum update" as soon as possible and then also reboot your BlueOnyx so that the updated Kernel comes into effect.

 

Users who already have installed our unofficial CentOS5 kernel from the BlueOnyx testing repository (see here) should also "yum update" and reboot.

 


Return
General
Aug 24, 2009 Category: General Posted by: mstauber
Previous page: API Documentation Next page: Downloads