Centos security update(stack clash)


#1

some info if interested:
https://blog.qualys.com/securitylabs/2017/06/19/the-stack-clash
https://access.redhat.com/security/vulnerabilities/stackguard

centos packages:

centos 7:
https://lists.centos.org/pipermail/centos-announce/2017-June/022464.html
https://lists.centos.org/pipermail/centos-announce/2017-June/022463.html

centos6:
https://lists.centos.org/pipermail/centos-announce/2017-June/022461.html
https://lists.centos.org/pipermail/centos-announce/2017-June/022462.html


(James Nesbitt) #2

I wonder if some of the kernel-3.10.0-514.21.2 update late yesterday helped to patch that (I suspect not yet), but there are also glibc-2.17-157.el7_3.4 updates late yesterday too and I’m unsure if that includes any patches or fixes for it.

These updates are available on v7, I can’t speak for earlier versions and I haven’t had a look.


#3

yes the versions you mentioned were released yesterday and are those that contain the fix for v7


(James Nesbitt) #4

Oh wonderful! Thanks for the confirmation!

Glad I applied them and restarted the server just after 10pm last night…