nimafire
June 8th, 2014, 12:39
New CL6 and hybrid kernels 2.6.32-531.17.1.lve1.2.57 fixes local vulnerability CVE-2014-3153 (https://access.redhat.com/security/cve/CVE-2014-3153).
We will provide more details on the exploit itself, once it is publish to general public by MITRE CVE Dictionary (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3153)
CL5 kernels are not vulnerable.
To update CL6 servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el6 kmod-lve-1.2-61.el6
To update hybrid servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el5h kmod-lve-1.2-61.el5h
We will provide more details on the exploit itself, once it is publish to general public by MITRE CVE Dictionary (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3153)
CL5 kernels are not vulnerable.
To update CL6 servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el6 kmod-lve-1.2-61.el6
To update hybrid servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el5h kmod-lve-1.2-61.el5h