Centos security update(stack clash)

dz00te · June 21, 2017, 6:47am

some info if interested:
https://blog.qualys.com/securitylabs/2017/06/19/the-stack-clash
https://access.redhat.com/security/vulnerabilities/stackguard

centos packages:

centos 7:
https://lists.centos.org/pipermail/centos-announce/2017-June/022464.html
https://lists.centos.org/pipermail/centos-announce/2017-June/022463.html

centos6:
https://lists.centos.org/pipermail/centos-announce/2017-June/022461.html
https://lists.centos.org/pipermail/centos-announce/2017-June/022462.html

bwdjames · June 21, 2017, 8:20am

I wonder if some of the kernel-3.10.0-514.21.2 update late yesterday helped to patch that (I suspect not yet), but there are also glibc-2.17-157.el7_3.4 updates late yesterday too and I’m unsure if that includes any patches or fixes for it.

These updates are available on v7, I can’t speak for earlier versions and I haven’t had a look.

dz00te · June 21, 2017, 8:39am

yes the versions you mentioned were released yesterday and are those that contain the fix for v7

bwdjames · June 21, 2017, 8:40am

Oh wonderful! Thanks for the confirmation!

Glad I applied them and restarted the server just after 10pm last night…