Issue
Are CloudLinux servers affected by the CVE-2023-4911?
Environment
- CloudLinux
Solution
- CL7 is not affected
- Released for 8 https://errata.almalinux.org/8/ALSA-2023-5455.html
- Released for 9 https://errata.almalinux.org/9/ALSA-2023-5453.html
If the users are inside CageFS it is unlikely that this vulnerability would be exploited. The user's privileges are very limited, and in any event, only the virtualized file system for said user would be affected, not the actual file system.
Here you may also find some mitigation steps and apply them.
Useful links
- https://access.redhat.com/security/cve/cve-2023-4911
- https://errata.almalinux.org/8/ALSA-2023-5455.html
- https://errata.almalinux.org/9/ALSA-2023-5453.html
Comments
0 comments
Please sign in to leave a comment.