[Hub] CVE-2016-5195 (DirtyCow) Linux vulnerability

Modified on: Thu, 23 Jan, 2020 at 3:42 AM

Operations Automation Operations Automation:5.5 Operations Automation:5.x Operations Automation:6.0 Operations Automation:6.x Operations Automation:7.3 Operations Automation:7.x

Symptoms

A root privileges escalation was recently discovered in Linux kernel. An unprivileged local user could use flaw in Linux memory subsystem to gain write access to otherwise read-only memory mappings and thus increase privileges on the system. This vulnerability was identified as CVE-2016-5195 and got unofficial name "Dirty Cow". More information could be obtained on CVE-2016-5195 information page.

How it affects Odin Automation infrastructure

Despite that CVE-2016-5195 affects all Linux kernels since version 2.6.22 and could be reproduced on all distributions.

In Odin Automation environment components at most risk are:

Shared web hosting (NG and legacy), since users may have SSH access to their webspaces.
Virtuozzo/PCS-based servers included in Odin Automation for Cloud Infrastructure
RedHat/CentOS-based virtual machines and containers provided by OACI module

Resolution

Please, follow instructions from the following dedicated articles to ensure that your system is protected from CVE-2016-5195:

CloudLinux instructions.
RedHat and CentOS instructions.
Virtuozzo already released updates for Virtuozzo 6.0, Virtuozzo Containers 4.7 and Parallels Server Bare Metal 5.0.

Internal content

Did you find it helpful? Yes No