Red Hat releases RHEL 7/CentOS 7 update to fix kernel bug

The Red Hat and CentOS community announced this week that a new kernel update was released for Red Hat Enterprise Linux (RHEL) 7 and CentOS Linux 7 operating systems to fix a severe bug. In the Linux kernel update released before the resolution of the Spectre V4 security vulnerability, RHEL 7.5 and CentOS Linux 7.5 were found to have an error, the connection tracking information does not work correctly, resulting in loss of connectivity and disclosure of connection tracking related configuration properties to other domain names

Red Hat wrote in the security bulletin:

“Previously, the connection tracking information was not cleared properly for packets forwarded to another network namespace. Packets that were marked with the “NOTRACK” target in one namespace were excluded from connection tracking even in the new namespace. Consequently, a loss of connectivity occasionally occurred, depending on the packet filtering ruleset of the other network namespaces”

In the latest version of the RHEL 7 series, Red Hat fixed this issue. These versions cover Red Hat Enterprise Linux 7 Desktop, Workstation and Server editions, Red Hat Enterprise Linux 7 for IBM z Systems, IBM System z (Structure A), POWER Big Endian, POWER Little Endian, ARM64, POWER 9, as well as Red Hat Enterprise Linux EUS Compute Node 7.5 and Red Hat Enterprise Linux for Scientific Computing 7.