Tag: patch
What Is A Kernel?
The kernel is a piece of software that is at the core of an operating system. It usually has complete control over all of the server systems. It is normally the first program loaded after the bootloader has completed its tasks. The kernel then handles the rest of the start-up tasks as well as i/o requests from the system’s software. It then translates those requests into hardware instructions for the CPU (central processing unit).
PHP-FPM/Nginx Vulnerability – CVE-2019-11043
A new vulnerability in PHP-FPM has been noted which could lead to remote code execution on nginx. An earlier message on Twitter exposed the CVE-2019-11043 bug:
Pre-Flight Check
- These instructions are intended specifically for checking your version of cPanel or WHM via the command line or the WHM dashboard.
- I’ll be working from a Liquid Web Managed CentOS 7 server, and I’ll be logged in as root.
Step #1: Log In to WHM
First, log in to WHM. You’ll arrive at your WHM dashboard:
Information on CVE-2015-3456 QEMU Vulnerability (VENOM)
VENOM, or Virtualized Environment Neglected Operations Manipulation, was made public on May 13, 2015. The vulnerability is in QEMU, a generic and open source machine emulator and virtualizer that is utilized by Xen, KVM, and other modern hypervisors / virtualization platforms.
A vulnerability found in the glibc library, specifically a flaw affecting the gethostbyname() and gethostbyname2() function calls, that allows a remote attacker to potentially execute arbitrary code. CentOS 5, CentOS 6, and CentOS 7 are potentially affected, thus we want to highlight the following information.
CVE-2014-9322 Vulnerability Info for Red Hat and CentOS
A vulnerability found in the Linux kernel, specifically a flaw in fault handling associated with the Stack Segment (SS), allows an unprivileged user to potentially gain privileges. CentOS 4, CentOS 5, CentOS 6, and CentOS 7 are potentially affected, thus we want to highlight the following information.
OpenSSL is a common cryptographic library which provides encryption, specifically SSL/TLS, for popular applications such as Apache (web), MySQL (database), e-mail, virtual private networks (VPNs), and more.
What is OpenSSL?
OpenSSL is a common cryptographic library which provides encryption, specifically SSL/TLS, for popular applications such as Apache (web), MySQL (database), e-mail, virtual private networks (VPNs), and more.
A vulnerability found in the Linux kernel, specifically a flaw with the pseudo tty (pty) device, allows an unprivileged user to cause a denial of service (system crash) or potentially gain administrator privileges. A small number of CentOS and Ubuntu versions are vulnerable, thus we want to highlight the following information:
OpenSSL is a common cryptographic library which provides encryption, specifically SSL/TLS, for popular applications such as Apache (web), MySQL (database), e-mail, virtual private networks (VPNs), and more.
Our Sales and Support teams are available 24 hours by phone or e-mail to assist.