Patch CVE-2020-14386 Without Reboot With KernelCare

Patch CVE-2020-14368 Without Reboot With KernelCare-min (1)

CVE-2020-14386 is a new kernel vulnerability that can be exploited to gain root privileges from unprivileged processes. It corrupts the memory in kernels newer than 4.6 on various Linux distributions, including: 

  • Ubuntu Bionic (18.04) and newer
  • Debian 9 and 10
  • CentOS 8/RHEL 8

Continue reading “Patch CVE-2020-14386 Without Reboot With KernelCare”

New Kernel Vulnerability Found by Virtuozzo Live-Patched by KernelCare

New kernel vulnerability found by Virtuozzo Live-patched by KernelCare

A month ago, Virtuozzo‘s Team discovered the new security vulnerability in the kernel – CVE-2020-14305. It corrupts the memory in kernels from v3.5 to v4.10 and affects various Linux distributions. KernelCare is preparing the patches for this CVE which will be available this week. Read this article to learn about how the vulnerability was discovered and what is the mitigation for it.

Continue reading “New Kernel Vulnerability Found by Virtuozzo Live-Patched by KernelCare”

KernelCare Patches Against Spectre Vulnerability Are On The Way

Spectre blog

On 9 June, Anthony Steinhauser, an engineer at Google, made some urgent posts to the Linux kernel mailing list. In them, he pointed out that hardware bugs in Intel and AMD chips are leaving servers vulnerable to Spectre exploits–even after the kernel is patched. Fortunately, a fix for this problem is being developed by the KernelCare team. First patches will be available by the end of the week of 22 June.

Continue reading “KernelCare Patches Against Spectre Vulnerability Are On The Way”

SRBDS/CrossTalk (CVE-2020-0543) Vulnerability Being Patched By KernelCare

CVE-2020-0543-(SRBDS)

 

A new CPU vulnerability known as SRBDS/CrossTalk was discovered in June 2020. The team at KernelCare is currently creating a patch to close it down. Let’s examine this new vulnerability, and explore what we’re doing to eliminate it. 

Continue reading “SRBDS/CrossTalk (CVE-2020-0543) Vulnerability Being Patched By KernelCare”