Security CentOS 6 & 7 Linux Kernel Update CVE-2016-6828, CVE-2016-7117, CVE-2016-9555

Gotcha, subscribed just now! Thanks for the information!

---

 

Same for me too

Code:

[root@upcloud ~]# yum clean all
Loaded plugins: fastestmirror, priorities
Cleaning repos: base centos-sclo-rh centos-sclo-sclo elasticsearch-5.x epel
              : extras mariadb updates varnish-4.1
Cleaning up everything
Cleaning up list of fastest mirrors


[root@upcloud ~]# yum update
Loaded plugins: fastestmirror, priorities
base                                                     | 3.6 kB     00:00     
centos-sclo-rh                                           | 2.9 kB     00:00     
centos-sclo-sclo                                         | 2.9 kB     00:00     
elasticsearch-5.x                                        | 1.3 kB     00:00     
epel/x86_64/metalink                                     |  26 kB     00:00     
epel                                                     | 4.3 kB     00:00     
extras                                                   | 3.4 kB     00:00     
mariadb                                                  | 2.9 kB     00:00     
updates                                                  | 3.4 kB     00:00     
varnish-4.1                                              |  951 B     00:00     
(1/11): base/7/x86_64/group_gz                             | 155 kB   00:00     
(2/11): epel/x86_64/group_gz                               | 170 kB   00:00     
(3/11): epel/x86_64/updateinfo                             | 719 kB   00:00     
(4/11): base/7/x86_64/primary_db                           | 5.6 MB   00:00     
(5/11): centos-sclo-sclo/x86_64/primary_db                 | 132 kB   00:00     
(6/11): extras/7/x86_64/primary_db                         | 115 kB   00:00     
(7/11): epel/x86_64/primary_db                             | 4.5 MB   00:00     
(8/11): updates/7/x86_64/primary_db                        | 2.2 MB   00:00     
(9/11): centos-sclo-rh/x86_64/primary_db                   | 2.2 MB   00:00     
(10/11): mariadb/primary_db                                |  18 kB   00:00     
(11/11): elasticsearch-5.x/primary                         |  22 kB   00:00     
varnish-4.1/x86_64/primary                                 | 9.7 kB   00:00     
Determining fastest mirrors
 * base: ftp.hosteurope.de
 * epel: mirror.de.leaseweb.net
 * extras: ftp.hosteurope.de
 * updates: ftp.hosteurope.de
elasticsearch-5.x                                                         50/50
varnish-4.1                                                               33/33
272 packages excluded due to repository priority protections
No packages marked for update


[root@upcloud ~]# uname -r
3.10.0-514.6.1.el7.x86_64

 

You have already the latest version:

Code:

3.10.0-514.6.1.el7.x86_64

 

One of my servers after installing the kernel and restart it is dead

I can only ping it but ssh doesn't respond on my port or default port and Nginx also seems to be down as the my test site is offline

Onlinenet told me that it is a software issue and i am 100% that is not !

Now i am alone and trying to thing any possible fixes:

Kernel should be ok as it is booting

I have free space on the disk (maybe not at /boot?)

I try to use another ip in case that firewall block me

Can't think anything else

At least to get ssh back and then i will try to find out what is wrong...

For my it seems that there is a Raid failure even if they don't want to admit it

Any ideas for helpful commands in rescue mode?

Thanks

 

That was on last thursday than - https://community.centminmod.com/threads/new-kernel-3-10-0-514-6-1-el7-x86_64.10125/
I got it through regular manual yum update

Code:

[root@upcloud ~]# yum history info 97
Loaded plugins: fastestmirror, priorities
Transaction ID : 97
Begin time     : Fri Jan 20 01:14:57 2017
Begin rpmdb    : 777:2ad1c0d71158af61ad60d39422638b7af49fdaef
End time       :            01:16:04 2017 (67 seconds)
End rpmdb      : 778:596f72a1670dd4aa9310d2a1f301df83ec0362f9
User           : root <root>
Return-Code    : Success
Command Line   : update
Transaction performed with:
    Installed     rpm-4.11.3-21.el7.x86_64                      @base
    Installed     yum-3.4.3-150.el7.centos.noarch               @base
    Installed     yum-metadata-parser-1.1.4-10.el7.x86_64       @anaconda
    Installed     yum-plugin-fastestmirror-1.1.31-40.el7.noarch @base
Packages Altered:
    Updated MariaDB-client-10.1.20-1.el7.centos.x86_64         @mariadb
    Update                 10.1.21-1.el7.centos.x86_64         @mariadb
    Updated MariaDB-common-10.1.20-1.el7.centos.x86_64         @mariadb
    Update                 10.1.21-1.el7.centos.x86_64         @mariadb
    Updated MariaDB-compat-10.1.20-1.el7.centos.x86_64         @mariadb
    Update                 10.1.21-1.el7.centos.x86_64         @mariadb
    Updated MariaDB-devel-10.1.20-1.el7.centos.x86_64          @mariadb
    Update                10.1.21-1.el7.centos.x86_64          @mariadb
    Updated MariaDB-server-10.1.20-1.el7.centos.x86_64         @mariadb
    Update                 10.1.21-1.el7.centos.x86_64         @mariadb
    Updated MariaDB-shared-10.1.20-1.el7.centos.x86_64         @mariadb
    Update                 10.1.21-1.el7.centos.x86_64         @mariadb
    Updated NetworkManager-1:1.4.0-13.el7_3.x86_64             @updates
    Update                 1:1.4.0-14.el7_3.x86_64             @updates
    Updated NetworkManager-adsl-1:1.4.0-13.el7_3.x86_64        @updates
    Update                      1:1.4.0-14.el7_3.x86_64        @updates
    Updated NetworkManager-bluetooth-1:1.4.0-13.el7_3.x86_64   @updates
    Update                           1:1.4.0-14.el7_3.x86_64   @updates
    Updated NetworkManager-glib-1:1.4.0-13.el7_3.x86_64        @updates
    Update                      1:1.4.0-14.el7_3.x86_64        @updates
    Updated NetworkManager-libnm-1:1.4.0-13.el7_3.x86_64       @updates
    Update                       1:1.4.0-14.el7_3.x86_64       @updates
    Updated NetworkManager-team-1:1.4.0-13.el7_3.x86_64        @updates
    Update                      1:1.4.0-14.el7_3.x86_64        @updates
    Updated NetworkManager-tui-1:1.4.0-13.el7_3.x86_64         @updates
    Update                     1:1.4.0-14.el7_3.x86_64         @updates
    Updated NetworkManager-wifi-1:1.4.0-13.el7_3.x86_64        @updates
    Update                      1:1.4.0-14.el7_3.x86_64        @updates
    Updated NetworkManager-wwan-1:1.4.0-13.el7_3.x86_64        @updates
    Update                      1:1.4.0-14.el7_3.x86_64        @updates
    Updated device-mapper-7:1.02.135-1.el7_3.1.x86_64          @updates
    Update                7:1.02.135-1.el7_3.2.x86_64          @updates
    Updated device-mapper-libs-7:1.02.135-1.el7_3.1.x86_64     @updates
    Update                     7:1.02.135-1.el7_3.2.x86_64     @updates
    Updated firewalld-0.4.3.2-8.el7.noarch                     @base
    Update            0.4.3.2-8.1.el7_3.noarch                 @updates
    Updated firewalld-filesystem-0.4.3.2-8.el7.noarch          @base
    Update                       0.4.3.2-8.1.el7_3.noarch      @updates
    Erase   kernel-3.10.0-123.el7.x86_64                       @anaconda
    Install kernel-3.10.0-514.6.1.el7.x86_64                   @updates
    Install kernel-devel-3.10.0-514.6.1.el7.x86_64             @updates
    Updated kernel-headers-3.10.0-514.2.2.el7.x86_64           @updates
    Update                 3.10.0-514.6.1.el7.x86_64           @updates
    Updated kernel-tools-3.10.0-514.2.2.el7.x86_64             @updates
    Update               3.10.0-514.6.1.el7.x86_64             @updates
    Updated kernel-tools-libs-3.10.0-514.2.2.el7.x86_64        @updates
    Update                    3.10.0-514.6.1.el7.x86_64        @updates
    Updated kpartx-0.4.9-99.el7.x86_64                         @base
    Update         0.4.9-99.el7_3.1.x86_64                     @updates
    Updated libnl3-3.2.28-2.el7.x86_64                         @base
    Update         3.2.28-3.el7_3.x86_64                       @updates
    Updated libnl3-cli-3.2.28-2.el7.x86_64                     @base
    Update             3.2.28-3.el7_3.x86_64                   @updates
    Updated libpciaccess-0.13.4-2.el7.x86_64                   @base
    Update               0.13.4-3.el7_3.x86_64                 @updates
    Updated libsemanage-2.5-4.el7.x86_64                       @base
    Update              2.5-5.1.el7_3.x86_64                   @updates
    Updated libsemanage-python-2.5-4.el7.x86_64                @base
    Update                     2.5-5.1.el7_3.x86_64            @updates
    Updated openssh-6.6.1p1-31.el7.x86_64                      @base
    Update          6.6.1p1-33.el7_3.x86_64                    @updates
    Updated openssh-clients-6.6.1p1-31.el7.x86_64              @base
    Update                  6.6.1p1-33.el7_3.x86_64            @updates
    Updated openssh-server-6.6.1p1-31.el7.x86_64               @base
    Update                 6.6.1p1-33.el7_3.x86_64             @updates
    Updated policycoreutils-2.5-9.el7.x86_64                   @updates
    Update                  2.5-11.el7_3.x86_64                @updates
    Updated policycoreutils-python-2.5-9.el7.x86_64            @updates
    Update                         2.5-11.el7_3.x86_64         @updates
    Updated python-firewall-0.4.3.2-8.el7.noarch               @base
    Update                  0.4.3.2-8.1.el7_3.noarch           @updates
    Updated python-perf-3.10.0-514.2.2.el7.x86_64              @updates
    Update              3.10.0-514.6.1.el7.x86_64              @updates
    Updated selinux-policy-3.13.1-102.el7_3.7.noarch           @updates
    Update                 3.13.1-102.el7_3.13.noarch          @updates
    Updated selinux-policy-targeted-3.13.1-102.el7_3.7.noarch  @updates
    Update                          3.13.1-102.el7_3.13.noarch @updates
    Updated xfsprogs-4.5.0-8.el7.x86_64                        @base
    Update           4.5.0-9.el7_3.x86_64                      @updates
Scriptlet output:
   1 warning: file /lib/modules/3.10.0-123.el7.x86_64/modules.softdep: remove failed: No such file or directory
   2 warning: file /lib/modules/3.10.0-123.el7.x86_64/modules.devname: remove failed: No such file or directory
history info

 

Any ideas on how can i check the /boot partition on my main servers mounted path?

Code:

/dev/md126     ext4      936G  455G  434G  52% /mnt/md126

 

I was thinking that was related to kernel as i install the kernel and then reboot it and boom....

I solve it using kvm ... I will create another post as i have one related question.

Thanks

 

Linode now have 4.9.7 but it's still not marked as Latest. Should I go with this or??

 

I only need one seemingly legit source to say yes then I'll do it, lol