Linux Kernel Vulnerability - Important notice

  • Sunday, 26th September, 2010
  • 17:48pm

A vulnerability has been found in the Linux kernel, which unfortunately is just about every system running 64-bit Linux. This vulnerability was introduced into the linux kernel in April 2008, and so essentially every distribution is affected, including RHEL (CentOS).

For the full story, follow these links:

  • http://blog.ksplice.com/2010/09/cve-2010-3081/
  • http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3081

What is the solution?

For Xen, CentOS and most of the Linux distribution release the latest patches kernel to fix the kernel vulnerability. The new kernel release that patches the vulnerability in the standard and Xen kernels (2.6.18-194.11.4.el5).

For Openvz, a patched kernel also make available (2.6.18-194.8.1.el5.028stab070.5)

How to protect yourself?

We have update all our node to the latest kernel to ensure our node is secure. You are required to reboot your vps or vmserver to have have your server use the latest kernel.So all you need to do is just reboot your vmserver or vps

How do I know my server is runing the latest kernel?

If your server is running Cpanel, open up WHM and go to server information, you will see your kernel version here.

If you dont have Cpanel, SSH to the server and apply command below. The retun result is the kernel version you are using.

uname -r

Feel free to open a ticket if your server does not use the latest kernel after reboot.

« Back