• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

RHEL Kernel Security Update

p4guru

Well-known member
#4
read further down as well http://www.webhostingtalk.com/showpost.php?p=9116038&postcount=41

A direct quote from their bug tracker:

I can confirm that. Red Hat Enteprise Linux 6.4 EUS and Red Hat Enterprise Linux 6.5.z contain backport of upstream commit c56a00a165712fd73081f40044b1e64407bb1875 which added additional locking into tty_insert_flip_string() function which effectively avoids the CVE-2014-0196 issue.
A couple of people, my self included, have attempted to "exploit" the issue, and so far no one has been successful.

See the bug report for more details on the tests.

So it would seem that up-to-date RHEL/CentOS 6.5 users are in the clear with no patches needed.
so if you're already up to date for RHEL/CentOS 6.5 you should be ok