CVE-2019-8912
-
- Posts: 3
- Joined: 2022/09/20 13:44:16
CVE-2019-8912
Is there an official CENTOS 7 kernel version that resolves vulnerability CVE-2019-8912? Running kernel version 3.10.0-1160.76.1.el7.x86_64 and trying to avoid EL repo, if possible. Looking for community guidance here and want to stay with CENTOS.
Re: CVE-2019-8912
https://access.redhat.com/security/cve/CVE-2019-8912
"Red Hat Enterprise Linux 7 kernel Not affected"
"Red Hat Enterprise Linux 7 kernel Not affected"
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
-
- Posts: 3
- Joined: 2022/09/20 13:44:16
Re: CVE-2019-8912
ok, think I took care of the issue. I had the old kernel installed and not in use. After I removed the old kernel, vulnerability cleared.
Re: CVE-2019-8912
Red Hat say this vulnerability is not and never has been present on RHEL 7 (which is the source used to build CentOS so applies to it too).
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: CVE-2019-8912
If the old kernel had no vulnerability (according to Red Hat), then your "vulnerability detection tool" does not actually detect vulnerabilities, but reports false positives based on some unreliable trivia. That makes one ask: how many true positives does it fail to detect.
-
- Posts: 3
- Joined: 2022/09/20 13:44:16
Re: CVE-2019-8912
nope, issue is back. test server was not picked up for vulnerability reporting. I can assume this is a false postive, potentially, but not sure why it is getting picked up. If in kernel-alt and I am on x86_64 server, not sure why that would get flagged here.