perfsonar-user - [perfsonar-user] RedHat CVE and New CentOS Kernel
Subject: perfSONAR User Q&A and Other Discussion
List archive
- From: Andrew Lake <>
- To: perfsonar-announce <>
- Cc: "" <>
- Subject: [perfsonar-user] RedHat CVE and New CentOS Kernel
- Date: Mon, 28 Jul 2014 14:13:36 -0400
All;
A new Red Hat CVE was released:
https://rhn.redhat.com/errata/RHSA-2014-0924.html
If you are a NetInstall user, a 'yum update' may give you a new non-web100
kernel and therefore break access to NDT/NPAD. Consult our FAQ for more info:
http://psps.perfsonar.net/toolkit/FAQs.html#Q30
Our read of the CVE does not find any issue of concern specific to the
toolkit. Its possible the host may be vulnerable to some types of DoS attacks
in some particular cases. If you are in doubt about your kernel, feel free to
review the CVE, upgrade to the latest version, and forgo NDT/NPAD support
for the time being. We are in the process of building and testing a new
kernel, and will alert you when we have our web100 patched version available.
We'll try to have it ready as soon as possible.
Thank you for your patience,
The perfSONAR Team
- [perfsonar-user] RedHat CVE and New CentOS Kernel, Andrew Lake, 07/28/2014
Archive powered by MHonArc 2.6.16.