---

CloudLinux 7 Beta Kernel Released to Patch Two Important Security Vulnerabilities

Today’s kernel update is only for CloudLinux 7 users using the Beta channel, and it patches CVE-2017-2647 and CVE-2017-7184 security vulnerabilities, which are also backported from the repositories of the Red Hat Enterprise Linux 7 operating system. While CVE-2017-2647 is a null pointer dereference vulnerability discovered in Linux kernel’s keyring_search_iterator, which could allow an unprivileged local user to crash the system or gain root access, CVE-2017-2647 is the out-of-bounds kernel heap access vulnerability was found in the XFRM framework.