Kernel Exploits in the wild

[handsonhosting]

If you're not already aware of it, there's a new kernel exploit in the wild which is exploiting 64bit servers which allow 32bit applications to run.

At least, that's the general gist of it. Here's the full disclosure - CVE-2010-3081 - https://access.redhat.com/kb/docs/DOC-40265

The various distributions such as CentOS and RedHat have now launched a patch in their latest kernel distribution.

If you haven't already patched your servers, it's time to get to work! If your host hasn't given you notice on this, it's time for a new host!

All servers at Hands-on are currently patched and protected.

 

[HostMantis]

If you're not already aware of it, there's a new kernel exploit in the wild which is exploiting 64bit servers which allow 32bit applications to run.

At least, that's the general gist of it. Here's the full disclosure - CVE-2010-3081 - https://access.redhat.com/kb/docs/DOC-40265

The various distributions such as CentOS and RedHat have now launched a patch in their latest kernel distribution.

If you haven't already patched your servers, it's time to get to work! If your host hasn't given you notice on this, it's time for a new host!

All servers at Hands-on are currently patched and protected.

Same here, but I'm seeing a lot of users around the globe complaining of their hosts being compromised by the exploit. So it seems quite a few hosts out there have not patched or were slow to do so. :sad:

 

[Dougy]

I've seen about 500 machines or so be compromised in about 6 hours after the exploit was released.

 

[handsonhosting]

We did our checks on our servers but none were infected. I haven't found too many places saying that they were infected. I saw iweb stated one of their machines were hit, but I have found very limited resources saying that they were hit.

Any links?