A serious vulnerability in the Linux kernel has been made public that affects nearly all 64-bit linux distributions and kernel versions.  This exploit can lead to anyone gaining full root-level access to your server, and requires an immediate kernel update and patch in some cases.

If you do not have a server management plan but would like a Versaweb tech to perform your kernel upgrade for you at a cost of $10 per server, please open a support ticket by logging in to https://noc.versaweb.com. You will need to provide your server’s IP address, root password, and SSH port if SSH is on a non-standard port.  Please note that the kernel update will require a reboot of your server.  Alternately, you can add our AMP-1 or AMP-2 management to your server and this and all future kernel updates will be performed for you at no additional cost.  See http://www.versaweb.com/server-management.php for details.

If you have added our AMP-1 or AMP-2 server management plan to your server, please open a ticket immediately by logging in at https://noc.versaweb.com and one of our techs will perform your kernel update at no cost.  You will need to provide your server’s IP address, root password, and SSH port if SSH is on a non-standard port.  Through our recent partnership with Ksplice, our AMP customers also have the option to have Ksplice installed on their server at no additional charge (a $3.95/m value) which will allow our techs to patch your kernel without a reboot.  If you opt for a standard kernel update rather than having Ksplice installed, a reboot of your server will be required.

If you do not have a server management plan but would like a Versaweb tech to perform your kernel upgrade for you at a cost of $10 per server, please open a support ticket by logging in to https://noc.versaweb.com. You will need to provide your server’s IP address, root password, and SSH port if SSH is on a non-standard port.  Please note that the kernel update will require a reboot of your server.

We can not stress enough how critical it is to update your server as soon as possible to avoid having your server compromised.  If you have any questions, please let us know.  If you would like more information about this vulnerability, please see the URL below:

http://blog.ksplice.com/2010/09/cve-2010-3081/