Updated July 7, 2020
 

Latest Update Impacting Some RHEL / CentOS Servers

NOTE: This issue should now be resolved.
A couple weeks ago, Red Hat released a set of patches which now seem to fix the issue. We are also getting confirmed reports that the fix from Red Hat does resolve this. The ultimate cause and fix can be identified in their article here.
 
Regarding the updates and changes to microcode_ctl – the correct version yum should request for you to install will be microcode_ctl-2.1-61.10.el7_8.x86_64.rpm. If you are given output above that does not match the version, please open a ticket to our support team to review.
 
Original Advisory:
We have observed an issue with a specific CVE update that affects the following system profile:
  • Self-Managed SuperMicro Server (our managed customers need not take any action)
  • Motherboard: X11SSL-F
  • Processor: E3-12XX v5 Skylake
  • Red Hat Enterprise Linux 7, CentOS 7 or CloudLinux 7 Installed

In relation to the recent CVE-2020-0543 that was released and patched on June 10th, 2020, at approximately 9 PM Eastern, we received multiple reports of servers having crashed at the UPCP script for cPanel. At this time, it appears that only the aforementioned hardware configuration with this software is affected, although we are still investigating.

We recommend you do not perform any kernel updates at this time. You can disable automatic updates via command line by following the instruction below (previous instruction via WHM no longer exists in latest versions of cPanel). Feel free to open a support ticket if you would like our assistance with this.

As of version 88, cPanel no longer allows you to disable automatic updates via WHM. This must be done via CLI.

In order to disable automatic updates on your cPanel server:

  • SSH to your server or utilize WHM’s “Terminal” application if it is enabled
  • Using your favorite text editor (vi, nano) edit /etc/cpupdate.conf
  • Change the “daily” setting to “manual” for the RPMUP and UPDATES options

Below is an example of a /etc/cpupdate.conf file with updates disabled:

RPMUP=manual
SARULESUP=daily
STAGING_DIR=/usr/local/cpanel
UPDATES=manual
CPANEL=release

To confirm that updates are disabled:

  • Log into WHM
  • Go to ‘Server Configuration’ -> ‘Update Preferences’
  • Confirm that the message ‘Warning Automatic updates are disabled for this server. We strongly recommend enabling automatic updates’ displays at the top of the page.
You can find more information about this advisory at:
We are in contact with the vendors for more information and assistance. If you have been affected and your server is unreachable, please reach out to our support department so they can make the required BIOS updates and get your system back online.
 

Need More Personalized Help?

If you have any further issues, questions, or would like some assistance checking on this or anything else, please reach out to us from your my.hivelocity.net account -> Support and provide your server credentials within the encrypted field for the best possible security and support.

If you are unable to reach your my.hivelocity.net account or if you are on the go, please reach out from your valid my.hivelocity.net account email to us here at: support@hivelocity.net. We are also available to you through our phone and live chat system 24/7/365.

 

Additional Links:

Looking for more information on Red Hat? Search our Knowledge Base!

In need of more great content? Interested in cPanel, Private Cloud, or Edge Computing? Check out our recent posts for more news, guides, and industry insights!

4 thoughts on “Latest Updates Impacting Some Red Hat / CentOS Servers”

  1. can we do our own bios updates over SSH like you can with dell servers?

    I know with our own in house dell servers we run a single command that connects to dells repo and compares all the HW firmware and downloads firmware updates and then says reboot to apply and this updates all components bios/raid/nic etc.

Leave a Comment

Your email address will not be published. Required fields are marked *

Related Articles

Channel Partners Expo 2024
Hivelocity News

Join Hivelocity at the Channel Partners Conference & Expo 2024

  Join Hivelocity for an engaging session on Architecting the Future: Bare Metal Cloud Enablement Workshop at Channel Partners Expo. Don’t miss this opportunity to expand your network and deepen your knowledge on bare metal cloud, AI Automation, and more! Additionally, we’ll be dealing $200 in chips to one lucky …

Continue read
UI enhancements to myV
Hivelocity News

UI Enhancements to myV

Hivelocity is thrilled to share exciting updates on our myV platform, designed to enhance your user experience. 1. “New” Indicators for Recently Updated Content: We’ve added “New” indicators next to pages with recently updated content, making it easy for you to discover the latest features coming your way in the coming …

Continue read
Hivelocity News

Hivelocity Announces New VPS Cloud Hosting Services

Tampa, FL, 10/12/2023 – Hivelocity, the leading Bare Metal hosting provider, is pleased to announce the addition of virtual private server (VPS) offerings to its growing list of services. With these new VPS services, Hivelocity now offers customers greater flexibility, scalability, and leading price-to-performance when hosting their applications and websites. …

Continue read