Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

kernelcare free patch not found

Discussion in 'General Discussion' started by simplysup, Jul 17, 2018.

  1. simplysup

    simplysup Registered

    Joined:
    Oct 6, 2007
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    51
    I have previously enabled KernelCare's Free Patch Set in WHM Security Advisor.

    Following an overnight update to 70.0.53 I have started receiving cron emails entitled:

    Subject of the message is:

    When I now run Security Advisor it advises me to install the free patch set; when I try to do so, it shows an error message stating that kernelcare was installed, but the free patch set could not be found.

    Please advise.

    Nigel
     
  2. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,212
    Likes Received:
    159
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @simplysup

    Looks like I'm also getting this notification on my server.
    Code:
    # kcarectl --patch-info
    No patches applied, but some are available, run 'kcarectl --update'.
    The notification when attempting to install is:

    I believe this is due to the kernel version you're running. If it's the same as mine, this is occurring because kernelcare (the paid version) has updated support for the kernel but the free patch update won't be available until the end of the week.

    Can you check the kernel version? Here's mine:
    Code:
    [root@server lauren]# uname -r
    3.10.0-862.6.3.el7.centos.plus.x86_64
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. simplysup

    simplysup Registered

    Joined:
    Oct 6, 2007
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    51
    Hi Lauren, thanks for responding.

    Code:
    [root@server ~]# uname -r
    3.10.0-862.6.3.el7.x86_64

    The kernel was updated a week or so ago, but I'm only now seeing this issue after the overnight cPanel update. When the kernel was updated I received the usual, and expected, emails telling me the kernel was unknown, but they went away after a couple of days.

    If it's just a case of waiting then that's fine, but I want to ensure that nothing in the latest update could have kyboshed the kernelcare patch.

    Cheers,

    Nigel
     
  4. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,212
    Likes Received:
    159
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    HI @simplysup

    Once kernelcare updates the patch to support this version of the kernel I do believe this issue will rectify itself, no patch is applied because the patch doesn't support the kernel version we're using. They say that they will have the free patchset updated by the end of the week.

    I think oddness of the message is related specifically to the fact that they have updated the paid version of KernelCare but not the patches.

    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. simplysup

    simplysup Registered

    Joined:
    Oct 6, 2007
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    51
    Hi again Lauren,

    You were correct in your optimism. As of today the patch is working again.

    Code:
    root@server ~]# kcarectl --patch-info
    OS: centos7
    kernel: kernel-3.10.0-862.6.3.el7
    time: 2018-07-18 11:21:55
    
    
    
    kpatch-name: 3.10.0/symlink-protection-ge-862.patch
    kpatch-description: symlink protection
    kpatch-kernel: kernel-3.10.0-514.el7
    kpatch-cve: N/A
    kpatch-cvss: N/A
    kpatch-cve-url: N/A
    kpatch-patch-url: https://gerrit.cloudlinux.com/#/admin/projects/lve-kernel-el7
    However now there's another kernel update ready to be installed, so it's back onto the merrygoround :)

    Nigel
     
  6. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,212
    Likes Received:
    159
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @simplysup

    It was a glass half full kind of situation ;) Though I'm glad it's working for you once again.

    I agree with you. In this instance, personally, I would keep an eye on their blog for when they introduce support for the newest kernel then update - you can update the kernel now but you will run into a similar situation, unfortunately.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice