KernelCare, CloudLinux’s live patching service, would now be able to fix Meltdown and Spectre vulnerabilities – that could cause a massive security breach – without the need to reboot servers. This live patching technology offers reboot-less fixes for CentOS, RHEL, CloudLinux, and others.
KernelCare is a live patching technology that would deliver uninterrupted security updates of the kernel, without any interference or downtime for software running on the server. It fixes only the affected part, without rebooting or restarting the server. With these targeted updates, KernelCare would be able to minimize the change and do it live on a running server.
A dedicated team of kernel developers has been working around the clock to deliver the patches that would fix the Meltdown and Spectre issues without customers needing to reboot servers. Those fixes are meant to prevent programs from peaking inside the kernel’s memory to prevent from a massive security disaster and performance lags.
Live Patches Expected Soon
“Because of the complexities and downtime associated with fixing these vulnerabilities, many cloud providers and enterprises have not yet updated their servers but the impact, especially in the hosting community, can be severe,” said Igor Seletskiy, CEO of CloudLinux. “All our customers have been challenged with this issue, and many have contacted us asking for a solution. Fixing it without bringing down servers along with hundreds and thousands of customers hosted on each server is a major accomplishment of our KernelCare team that worked on it.”
Launched over 3 years ago with over 100,000 servers now running it, KernelCare delivers live patches for Meltdown and Spectre vulnerabilities for the following distributions: CentOS 7 and CentOS 7 Plus; RHEL 7; CloudLinux 7, hybrid; Proxmox; VE3.10. Live patches expected soon include: CentOS 6; RHEL 6; CloudLinux 6; Virtuozzo; Ubuntu; Debian; and others.
