The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Kernel does not support the prevention of symlink ownership attacks.

Discussion in 'General Discussion' started by PCZero, Apr 5, 2017.

  1. PCZero

    PCZero Well-Known Member

    Joined:
    Dec 13, 2003
    Messages:
    552
    Likes Received:
    38
    Trophy Points:
    178
    Location:
    Earth
  2. PCZero

    PCZero Well-Known Member

    Joined:
    Dec 13, 2003
    Messages:
    552
    Likes Received:
    38
    Trophy Points:
    178
    Location:
    Earth
    BTW here are the results of the commands requested in the earlier thread...



    root@myhost [~]# uname -r
    2.6.32-696.el6.x86_64

    root@myhost [~]# rpm -qa|grep kernel
    abrt-addon-kerneloops-2.0.8-43.el6.centos.x86_64
    kernel-headers-2.6.32-696.el6.x86_64
    libreport-plugin-kerneloops-2.0.9-33.el6.centos.x86_64
    dracut-kernel-004-409.el6_8.2.noarch
    kernel-2.6.32-696.el6.x86_64
    kernel-2.6.32-642.15.1.199.cpanel6.x86_64
    kernel-firmware-2.6.32-696.el6.noarch

    root@myhost [~]#
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    36,980
    Likes Received:
    1,275
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    To clarify, were you using the cPanel hardened kernel? If so, it's by design that it's replaced with newer stock kernels as this ensures critical CVEs are addressed. It will update back to the cPanel hardened kernel once we've published the updated version. We're looking into replacing the cPanel hardened kernel with a different kernel solution that will avoid this issue, but there's no additional information to report on that at this time.

    Thank you.
     
  4. PCZero

    PCZero Well-Known Member

    Joined:
    Dec 13, 2003
    Messages:
    552
    Likes Received:
    38
    Trophy Points:
    178
    Location:
    Earth
    Yes under the previous issue/fix the cpanel hardened kernel resolved the issue. So now I am at risk until a new resolution is reacehed is what you are telling me?
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    36,980
    Likes Received:
    1,275
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page