---

Important CentOS 7 Linux Kernel Security Update Patches Five Vulnerabilities

CentOS is based on the freely distributed sources of the commercial Red Hat Enterprise Linux operating system, which means that it always inherits its most recent security patches, and the latest kernel update is here to address a total of five vulnerabilities, as well as to fix a bunch of bugs. According to the upstream security advisory from Red Hat, the kernel update fixes a remote code execution vulnerability (CVE-2017-7477) discovered way Linux kernel allocates heap memory to build the scattergather list from a fragment list(skb_shinfo(skb)-frag_list) in the socket buffer(skb_buff), allowing remote attackers to escalate their privileges.