Join the community today
Become a Member

Security CentOS Kernel Security Updates CVE-2014-7841 & CVE-2014-4656

Discussion in 'CentOS, Redhat & Oracle Linux News' started by eva2000, Jan 29, 2015.

  1. eva2000

    eva2000 Administrator Staff Member

    54,107
    12,179
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,738
    Local Time:
    5:34 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    More security updates for CentOS. This time for Kernel security flaws CVE-2014-7841 & CVE-2014-4656. Outlined updated Kernel YUM package updates available for CentOS 6 at Red Hat Customer Portal and CentOS 7 at Red Hat Customer Portal


    For Redhat 6 / CentOS 6

    Fixed kernel is version named 2.6.32-504.8.1

    Code:
    kernel-2.6.32-504.8.1.el6.x86_64.rpm        MD5: fcfbf51648939808f1026101cc8bf2ae
    SHA-256: 7141f011b98dcc454df355020c243d75d27ab81a6a4225b9afb08dce8bf31856
    kernel-abi-whitelists-2.6.32-504.8.1.el6.noarch.rpm        MD5: 1e72656623c00ad5b4a3221b0b281b9b
    SHA-256: 85f08eb4643aa2a3a4db457ca2233636b5e6c63663d616cca30a985cf341799b
    kernel-debug-2.6.32-504.8.1.el6.x86_64.rpm        MD5: d107979ba45d9bf0f7c2dd8e756452a7
    SHA-256: e6535c5e94aea2a6f072b5b1ae0a627686fd2bfff84126ceba7d183fe148070a
    kernel-debug-debuginfo-2.6.32-504.8.1.el6.x86_64.rpm        MD5: b1b6159aaa020bf3d2bfcabff2c590c9
    SHA-256: cc4879b18092e913916cbc406897a7f4a91ace8adc8ca8226e762b946daeeeb9
    kernel-debug-devel-2.6.32-504.8.1.el6.x86_64.rpm        MD5: cc65734d6b4a51b8eca58e110ea40fe0
    SHA-256: 8933e5a750f0fb4b3b0ea9aad7dc247e28d859a5037f3bce940d1da9c1ac51e2
    kernel-debuginfo-2.6.32-504.8.1.el6.x86_64.rpm        MD5: 6d8506ac9e4b22ae3cf09aed1df64bfa
    SHA-256: ce205e7caf02b173d23ac651e960dcd407bfdea6bf5bae6508411aa77ccda170
    kernel-debuginfo-common-x86_64-2.6.32-504.8.1.el6.x86_64.rpm        MD5: bee821e95c2b8b3cc2edba4fb485ff2c
    SHA-256: 706b5a2f6889787fef3196d7b6d47fa8dc5f54dbb2ef76266ee84a3a67f5a000
    kernel-devel-2.6.32-504.8.1.el6.x86_64.rpm        MD5: 2d2c8c64ed6d034f39a933c78e514b1c
    SHA-256: 8fc700e00f7c4d634108830eee22e2f6c58c1e886d657bdfaab878d6f9dac921
    kernel-doc-2.6.32-504.8.1.el6.noarch.rpm        MD5: 1f2e90cf13360a6b71d1d5be3626bf0c
    SHA-256: 0906a7e3cffd0ac8156ef251fc45276283810300514aa45d39b4d03714c30753
    kernel-firmware-2.6.32-504.8.1.el6.noarch.rpm        MD5: c6c0acc00696e211f502ba3ddcb26a16
    SHA-256: 258a4151a9b59f84b7d5884f2b375fdb81f4f08e1680888d0c481fb2c74132c4
    kernel-headers-2.6.32-504.8.1.el6.x86_64.rpm        MD5: cc7f35a412752732290650e03a034de5
    SHA-256: d4ff632ec71f11fc78b0377dd3c3ed6770ee029134fce4cfb785324128e6b3f2
    perf-2.6.32-504.8.1.el6.x86_64.rpm        MD5: 6fb1c1a6d68491485d6f06a3831bf2c1
    SHA-256: 9574d7795d15df3d0226c4ba31a22fc80069ca55de05a058fab4de2a608d06d5
    perf-debuginfo-2.6.32-504.8.1.el6.x86_64.rpm        MD5: 5c45140d2486edcfb1810026f1c71d27
    SHA-256: 65656d6ab953e6517a891805ed1af7a11eec640075dc484f8bde38fe87e77447
    python-perf-2.6.32-504.8.1.el6.x86_64.rpm        MD5: a19dc38bff388eac2c15d9dcd9d62580
    SHA-256: e3cc31a8b43fc80f141e0f3e36f16be7ce6476a90eb7f6fe493a0dd5001cebcd
    python-perf-debuginfo-2.6.32-504.8.1.el6.x86_64.rpm        MD5: 53eec85dedf8f9bbf9d7959539b15ee8
    SHA-256: 9eba42c2909595bd0bd97a8946484e72b4694acb18b871aa14bd64bb907febe4
    For Redhat 7 / CentOS 7

    Fixed kernel is version named kernel-3.10.0-123.20.1

    Code:
    kernel-3.10.0-123.20.1.el7.x86_64.rpm        MD5: f931ebd010f2aa965ab1d95634066fd4
    SHA-256: 8db140e4c808d3cdf5099cc3170c2c59b6d723d0c85869152fb294775892a595
    kernel-abi-whitelists-3.10.0-123.20.1.el7.noarch.rpm        MD5: 529e8ecc9588bd7ca2919027e0a22859
    SHA-256: add43b2b8af093386c2cc285249a766a51efb7b6c34763e28cd9594fc4297a67
    kernel-debug-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 7aa877f3bb62c85e78a9845e6be7d869
    SHA-256: 3e2d8b91784d2cf98c2759045f910cb3bb99e90692b323f4dd28df9791876d6b
    kernel-debug-debuginfo-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 1ff48d5cf2a194a39c17989cb873ff1f
    SHA-256: 3faca7bf3bb892fc2231c05c976cf55f8928da6f4ad871b65fcd704bba0c4ac5
    kernel-debug-devel-3.10.0-123.20.1.el7.x86_64.rpm        MD5: e6d357835c2f6eff96c8acc48f70fbd6
    SHA-256: 7ce4177198aa7745aad466b43073b986aba53739319c87fab5aebd696dfd6fe4
    kernel-debuginfo-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 9e1baae3e85d2a1ffe4f372c73750ce5
    SHA-256: c8c5a18c0f36319f802686608e03350e0d59847bed00f41fb4c624fd1a90a4ed
    kernel-debuginfo-common-x86_64-3.10.0-123.20.1.el7.x86_64.rpm        MD5: b6e6480af0e5d5727d0e1a3dc17a648d
    SHA-256: 107dc555fb4f37011281eb4b53b7ff4c0844bfd846093529751245d14cfc83a9
    kernel-devel-3.10.0-123.20.1.el7.x86_64.rpm        MD5: a99778b49138315351062ada86a8a37c
    SHA-256: 77075cad6a04ed60c3bf23b1273142958e33c118bdd44abd3467767efe9d2463
    kernel-doc-3.10.0-123.20.1.el7.noarch.rpm        MD5: 60a9a2750cd40c8c38e876a757ba60a2
    SHA-256: c437118fc3c25d52f4c9b0b20fba207d6e736ff5d74cb236e5381f33cb7cb6cc
    kernel-headers-3.10.0-123.20.1.el7.x86_64.rpm        MD5: aad6f29f6ee334b816b49a80bac0aa1e
    SHA-256: e315c6d8bf8477130cd173a04f11e49496ab41aa4dae74a1ddab37db2da5edba
    kernel-tools-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 6713302db1b12ba6c54c53bde071e2a4
    SHA-256: c3f2f9e01d3157781feb3deb02481a0cf879d6f43867c647dfc6ba437a3faf29
    kernel-tools-debuginfo-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 814ec7e877bbf054156827a15ce83b2f
    SHA-256: 9ef867f7454c46311e8fcd7b1223b99be17c6e4dce0fce292166d10b9f619cce
    kernel-tools-libs-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 84636ee27f9ce805fa8b58a2fcdf94e1
    SHA-256: 90687641469fee890d8e11b6450589541cc47d3f99adba571a5b58e744cd87f2
    kernel-tools-libs-devel-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 02374c0a9c61a3201137d8e0f5b9b71c
    SHA-256: 60067c9f4ff16e11838eba45fed7b7bb0df664a8672080af6c67240de8c40e94
    perf-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 514dc841ed23b2a937b8bd2f40d090c4
    SHA-256: a8a684e1afb1417c8b86c76de57921aed26423c2c18c19734e6519ac396982dc
    perf-debuginfo-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 3700d323f080afef47de5e4b166e7fc9
    SHA-256: 97c871f8e5d31fac45d105c3b12d5f109ebd35db32b568e4dee1ee5b0620a55d
    python-perf-3.10.0-123.20.1.el7.x86_64.rpm        MD5: c97fc3eb8196d84eba0c60d88ed76dd9
    SHA-256: 481d7c6e57d9ac91d44b36d7d91e99a95d0dff3602ac7665b157aab05d90eab3
    python-perf-debuginfo-3.10.0-123.20.1.el7.x86_64.rpm        MD5: 5bba0885698c4b27d6176331e427b1d4
    SHA-256: daef7b8b84ecc54c39b8db0f3865dc00ff9d1c20ed5af4cd630f551ae4b09022
    To update again use commands

    Code:
    yum clean all
    yum list updates
    yum -y update
    Then a server reboot is required for new updated kernel to be loaded.
     
  2. deltahf

    deltahf Premium Member Premium Member

    585
    264
    63
    Jun 8, 2014
    Ratings:
    +486
    Local Time:
    2:34 PM
    I don't think Linode has updated their repos yet...
    Code:
    $ yum update kernel
    
    Loaded plugins: downloadonly, fastestmirror, priorities
    
    Setting up Update Process
    
    Loading mirror speeds from cached hostfile
    
    epel/metalink                                            |  14 kB     00:00     
    
     * base: mirrors.linode.com
    
     * epel: epel.mirror.constant.com
    
     * extras: mirrors.linode.com
    
     * rpmforge: repoforge.mirror.constant.com
    
     * updates: mirrors.linode.com
    
    base                                                     | 3.7 kB     00:00     
    
    extras                                                   | 3.4 kB     00:00     
    
    mariadb                                                  | 1.9 kB     00:00     
    
    newrelic                                                 |  951 B     00:00     
    
    r1soft                                                   |  951 B     00:00     
    
    rpmforge                                                 | 1.9 kB     00:00     
    
    updates                                                  | 3.4 kB     00:00     
    
    updates/primary_db                                       | 2.1 MB     00:00     
    
    1636 packages excluded due to repository priority protections
    
    No Packages marked for Update
    Should I bother going to the trouble of using another repo just for this? I don't really understand the vulnerability.
     
  3. eva2000

    eva2000 Administrator Staff Member

    54,107
    12,179
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,738
    Local Time:
    5:34 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    Last edited: Jan 30, 2015