This could be used by a local user to leak iSCSI transport handle kernel address or end arbitrary iSCSI connections on the system. The third vulnerability patched in this new CentOS Linux 7 and RHEL 7 kernel update is CVE-2021-27363, a flaw having a “moderate” security impact and discovered in Linux kernel’s iSCSI driver. Two of these vulnerabilities are marked by the Red Hat Product Security team as “important.” These include CVE-2021-27365, a heap buffer overflow discovered in Linux kernel’s iSCSI subsystem that could allow a local, unprivileged user to cause a denial of service (system crash) or possibly execute arbitrary code, and CVE-2021-27364, an out-of-bounds read flaw discovered in the libiscsi module that could lead to reading kernel memory or a crash. The new Linux kernel security update comes just three weeks after the previous one, which patched 11 flaws, to address three vulnerabilities affecting the Linux 3.10 kernel used in all supported Red Hat Enterprise Linux 7 and CentOS Linux 7 operating system series. Kernel-ml-modules-5.17. new important Linux kernel security update has been released for Red Hat Enterprise Linux (RHEL) 7 and CentOS Linux 7 systems to address three security vulnerabilities and various other bugs. You can remove the old kernel (optional): $ dnf remove kernel-core-4.18.0 kernel-devel-4.18.0 kernel-tools-libs-4.18.0 kernel-headers-4.18.0Ĭheck that the old kernel version has been removed: $ rpm -qa | grep kernel kernel-ml-core-5.17.86_64 Two versions of the kernel are currently available on the system: $ rpm -qa | grep kernel kernel-core-4.18.0-240.10.1.el8_3.x86_64 Update the grub config: $ grub2-mkconfig -o /boot/grub2/grub.cfgĬheck the kernel version and make sure it has changed to 5.17: $ uname -r 5.17.86_64 Now you need to configure Linux to boot with the new kernel: $ grub2-set-default 0 To install the latest available kernel, use the command: $ dnf -enablerepo=elrepo-kernel install kernel-ml List available Linux kernels: $ dnf -disablerepo="*" -enablerepo="elrepo-kernel" list available| grep kernel-ml Import the repository key: $ rpm -import This is a community repository for Enterprise Linux which provides support for RHEL, CentOS, Scientific, and Fedora. Let’s start by connecting the ElRepo repository. The kernel version 4.18 is quite old and we will update it to 5.17. Let’s look at how to update the Linux kernel to the latest version in CentOS as an example.Ĭheck which version of Linux you have installed: $ cat /etc/redhat-release CentOS Linux release (Core)Ĭheck the kernel version: $ uname -r 4.18.0-193.6.3.el8_2.x86_64
0 kommentar(er)
