[elrepo] CVE-2022-0185 kernel update

[Scott Van Caster]

Trevor,

Thanks for the reply.

I do have kernel 3.10.0-1160.53.1.el7.x86_64.  I am taking it that this is
a patched or working kernel for my Centos 7.9 and does not need a nic
driver update because it is working.  Is that correct?

This command 'grep 8086 /lib/modules/$(uname -r)/modules.* | grep 1572`
shows this result:
generates this
'/lib/modules/3.10.0-1160.53.1.el7.x86_64/modules.alias:alias
pci:v00008086d00001572sv*sd*bc*sc*i* i40e'

It appears that i40e is currently loaded and no further action is
required.  Correct?

This command 'grep
/lib/modules/3.10.0-1160.53.1.el7.x86_64/modules.alias.bin: binary'
returns. 'Grep: No such file or directory'

Not sure if this is significant?

Thanks so much for your help.
Scott


On Fri, Jan 28, 2022 at 1:40 PM Trevor Hemsley <themsley at voiceflex.com>
wrote:

> On 28/01/2022 18:48, Scott Van Caster wrote:
> > Team,
> >
> > I am testing on Centos 7.9 your kernel patch for the CVE-2022-0185.  I
> > have
> > tried the ml and tl versions and it looks like I need the driver for
> > my nic card.  I did not find this one listed.
> > 19:00.0 Ethernet controller [0200]: Intel Corporation Ethernet Controller
> >  X710 for 10GbE SFP+ [8086:1572] (rev 02)
> >
> > Are there any workarounds for my situation?
>
>
> That card is supported by the i40e module which should be part of both
> kernel-ml and -lt. The card is supported by the default distro
> 3.10.0-1160.53.1.el7 kernel as well.
>
> Check with `grep 8086 /lib/modules/$(uname -r)/modules.* | grep 1572`
> and you should see a line like
>
> grep: /lib/modules/5.15.13-100.fc34.x86_64/modules.alias.bin: binary
> file matches
>
> (mine is on Fedora but the idea is the same).
>
> Trevor
>
>
> *Disclaimer*
>
> The information contained in this communication from the sender is
> confidential. It is intended solely for use by the recipient and others
> authorized to receive it. If you are not the recipient, you are hereby
> notified that any disclosure, copying, distribution or taking action in
> relation of the contents of this information is strictly prohibited and may
> be unlawful.
>
> This email has been scanned for viruses and malware, and may have been
> automatically archived by *Mimecast Ltd*, an innovator in Software as a
> Service (SaaS) for business. Providing a *safer* and *more useful* place
> for your human generated data. Specializing in; Security, archiving and
> compliance. To find out more Click Here
> <http://www.mimecast.com/products/>.
>


-- 

Scott Van Caster

Swoop Search LLC

(c) 920-819-5557

scott at swoopsrch.com

https://swoopsrch.com


*Swoop Confidential Business Proprietary 2022*

This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom they are addressed.
This message contains confidential information and is intended only for the
individual named. If you are not the named addressee you should not
disseminate, distribute or copy this e-mail. Please notify the sender
immediately by e-mail if you have received this e-mail by mistake and
delete this e-mail from your system. If you are not the intended recipient
you are notified that disclosing, copying, distributing or taking any
action in reliance on the contents of this information is strictly
prohibited.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.elrepo.org/pipermail/elrepo/attachments/20220201/47f6f6c7/attachment.html>