Dirty COW Vulnerability - Kernel Update Oct 21st
I hope everyone is patched up for this very serious vulnerability called Dirty COW disclosed on October 19, 2016.
It is a privilege escalation vulnerability in the Linux Kernel existing since Kernel v2.6.22 thru which an attacker may gain write access to any file they can read, and then increase their privileges system-wide.
DO posted a nice How To Protect Your Server Against the Dirty COW Linux Vulnerability
Check your kernel version.
Anything below the versions stated below are vulnerable:
*4.8.0-26.28 for Ubuntu 16.10 *4.4.0-45.66 for Ubuntu 16.04 LTS *3.13.0-100.147 for Ubuntu 14.04 LTS *3.2.0-113.155 for Ubuntu 12.04 LTS *3.16.36-1+deb8u2 for Debian 8 *3.2.82-1 for Debian 7 *4.7.8-1 for Debian unstable
##CentOS and Redhat are yet to release a patch fix.
My biggest concern is with OpenVZ Containers... What is the remedy for OVZ as they are all stuck at Kernel 2.6?