[BlueOnyx:20177] EL5/6/7 Kernel vulnerability
Michael Stauber
mstauber at blueonyx.it
Fri Oct 21 12:22:11 -05 2016
Hi all,
This is a bit of a rare bird that we haven't seen in a while. A nifty
kernel vulnerability that allows a privilege escalation.
See: https://access.redhat.com/security/cve/CVE-2016-5195
The OpenVZ kernelw on Aventurin{e} are also affected.
At this time there is a procedure available that allows to build a
kernel module that mitigates against this attack vector:
https://bugzilla.redhat.com/show_bug.cgi?id=1384344#c13
But it's not entirely trivial. Updated kernel should be available soon
from upstream.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list