Spectre and its cousin Meltdown have been with us since 2018, and one would think that we’ve heard everything there is to hear about these vulnerabilities. But, here we are, with another post about Spectre.
Continue reading “Spectre, Yet Again. Because We Know You Missed It…”
.jpg)
CVE-2020-14386 is a new kernel vulnerability that can be exploited to gain root privileges from unprivileged processes. It corrupts the memory in kernels newer than 4.6 on various Linux distributions, including:
Continue reading “Patch CVE-2020-14386 Without Reboot With KernelCare”
A month ago, Virtuozzo‘s Team discovered the new security vulnerability in the kernel – CVE-2020-14305. It corrupts the memory in kernels from v3.5 to v4.10 and affects various Linux distributions. KernelCare is preparing the patches for this CVE which will be available this week. Read this article to learn about how the vulnerability was discovered and what is the mitigation for it.
Continue reading “New Kernel Vulnerability Found by Virtuozzo Live-Patched by KernelCare”
On 9 June, Anthony Steinhauser, an engineer at Google, made some urgent posts to the Linux kernel mailing list. In them, he pointed out that hardware bugs in Intel and AMD chips are leaving servers vulnerable to Spectre exploits–even after the kernel is patched. Fortunately, a fix for this problem is being developed by the KernelCare team. First patches will be available by the end of the week of 22 June.
Continue reading “KernelCare Patches Against Spectre Vulnerability Are On The Way”
.png)
A new CPU vulnerability known as SRBDS/CrossTalk was discovered in June 2020. The team at KernelCare is currently creating a patch to close it down. Let’s examine this new vulnerability, and explore what we’re doing to eliminate it.
Continue reading “SRBDS/CrossTalk (CVE-2020-0543) Vulnerability Being Patched By KernelCare”
The KernelCare team are following developments for a recently-reported vulnerability involving QEMU-KVM guests running Linux kernels.
Continue reading “QEMU-KVM vhost/vhost_net Guest to Host Kernel Escape Vulnerability”
KernelCare patches will start rolling out on Monday, 12 August.
Continue reading “SWAPGS: KernelCare patches are on the way”
A new month has started—Summer is in full swing—Must be time for another CPU vulnerability. (Let’s hope this one has a catchy name.)
