On Tue, 25 Oct 2016 17:21:54 -0700 Akemi Yagi <amyagi@xxxxxxxxx> wrote: > On Tue, Oct 25, 2016 at 10:26 AM, Leon Fauster > <leonfauster@xxxxxxxxxxxxxx> wrote: > > Am 25.10.2016 um 15:39 schrieb Peter Kjellström <cap@xxxxxxxxxx>: > >> On Tue, 25 Oct 2016 10:06:12 +0200 > >> Christian Anthon <anthon@xxxxxx> wrote: > >> > >>> What is the best approach on centos 6 to mitigate the problem is > >>> officially patched? As far as I can tell Centos 6 is vulnerable to > >>> attacks using ptrace. > >> > >> I can confirm that c6 is vulnerable, we're running a patched kernel > >> (local build) using a rhel6 adaptation of the upstream fix. > >> > >> Ask off-list if you want an src.rpm > > > > > > Hi Peter, can you confirm that its this? > > > > http://pastebin.centos.org/56391/ > > That is for the EL-7.2 kernel. Peter was offering a patch for CentOS > 6. > > RH released the patched kernel for EL-6.8 today. I have attached the > diff file between 2.6.32-642.6.1.el6 and 2.6.32-642.6.2.el6. It is > more complex because the 6 kernel is older, so required more mods, I > suppose. Maybe that was the reason why the EL-6 update took longer > than EL-7. We also did a quick diff for the official c6 patch and it's almost but not quite what we were using as a quick fix. /Peter _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- From: Peter Kjellström <cap@xxxxxxxxxx>
- Date: Wed, 26 Oct 2016 12:56:38 +0200
- Cc: CentOS mailing list <centos@xxxxxxxxxx>
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <CABA31Dr+9pCD2_gra=D4eimxqD47EdP_QcJK=-cGzdQLm+qXRg@mail.gmail.com>
- References: <60547.69.209.224.207.1477183789.squirrel@cosmo.uchicago.edu> <60860.69.209.224.207.1477185624.squirrel@cosmo.uchicago.edu> <alpine.LRH.2.20.1610241128500.1742@weather.admin.niu.edu> <bcbda4dd-e6c2-9c86-9939-512d6ed8f4fd@rth.dk> <20161025153951.62a547f2@yaydoe> <36C28472-AA65-45F8-999A-2185DF739378@googlemail.com> <CABA31Dr+9pCD2_gra=D4eimxqD47EdP_QcJK=-cGzdQLm+qXRg@mail.gmail.com>
- Follow-Ups:
- Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- From: Johnny Hughes
- Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- References:
- CVE-2016-5195 ?DirtyCOW?: Critical Linux Kernel Flaw
- From: Valeri Galtsev
- Re: CVE-2016-5195 ?DirtyCOW?: Critical Linux Kernel Flaw
- From: Valeri Galtsev
- Re: CVE-2016-5195 ?DirtyCOW?: Critical Linux Kernel Flaw
- From: Gilbert Sebenste
- Re: CVE-2016-5195 “DirtyCOW”: Critical Linux Kernel Flaw
- From: Christian Anthon
- Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- From: Peter Kjellström
- Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- From: Leon Fauster
- Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- From: Akemi Yagi
- CVE-2016-5195 ?DirtyCOW?: Critical Linux Kernel Flaw
- Prev by Date: Re: Ordering rich rules with firewalld
- Next by Date: Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- Previous by thread: Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- Next by thread: Re: CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw
- Index(es):
 |