New CloudLinux 7 Kernel Security Update Fixes Out-of-Bounds Heap Access in XFRM

Share
  • Post Updated: April 3, 2024

CloudLinux’s Mykola Naugolnyi announced today, April 4, 2017, the general availability of an updated kernel package for the CloudLinux 7 and CloudLinux 6 Hybrid operating system series.

The new CloudLinux 7 kernel (version 3.10.0-427.36.1.lve1.4.44) is here to fix the CVE-2017-7184 security vulnerability discovered and patched in Red Hat Enterprise Linux 7 operating systems, which Red Hat marked as important and described as an out-of-bounds heap access in the XFRM framework.

“Out-of-bounds kernel heap access vulnerability was found in xfrm, kernel’s IP framework for transforming packets. An error dealing with netlink messages from an unprivileged user leads to arbitrary read/write and privilege escalation,” reads the Red Hat security advisory.

CloudLinux 7 and CloudLinux 6 Hybrid users using the 3.10…. (read more)

Remember to like our facebook and our twitter @ubuntufree for a chance to win a free Ubuntu laptop by Dell or HP!

Top Trending Pages: Ubuntu Downloads | Ubuntu How To Guide | Download Ubuntu Software | Share Ubuntu Files With Windows