From ksplice-support_ww at oracle.com  Wed Nov  4 06:52:35 2020
From: ksplice-support_ww at oracle.com (Oracle Ksplice)
Date: Wed, 4 Nov 2020 14:52:35 GMT
Subject: [Ksplice-cloudlinux6-updates] New Ksplice updates for CloudLinux 6
	(2.6.32-954.3.5.lve1.4.80.el6)
Message-ID: <34hw0fmrav-1@userp3020.oracle.com>

Synopsis: 2.6.32-954.3.5.lve1.4.80.el6 can now be patched using Ksplice
CVEs: CVE-2017-6951

Systems running CloudLinux 6 can now use Ksplice to patch against the
latest CloudLinux 6 kernel update, 2.6.32-954.3.5.lve1.4.80.el6.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running CloudLinux 6
install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2017-6951: Denial-of-service from userspace via dead security keys.

Dead security keys were improperly assigned a type with name "dead",
which allowed them to be accessed by users with the
key_get_type_from_user() syscall, causing a kernel panic and
denial-of-service.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.