[CentOS] CVE-2018-14634 and kernel-debuginfo ?

Tue Sep 25 23:50:19 UTC 2018
Akemi Yagi <amyagi at gmail.com>

On Tue, Sep 25, 2018 at 11:48 AM Zube <Zube at stat.colostate.edu> wrote:
> The current mitigation for CVE-2018-14634 is a systemtap script
> mentioned here:
> https://access.redhat.com/security/cve/cve-2018-14634
> It also mentions that one can build a kernel module to distribute
> to other machines, but in any case one needs the corresponding
> debuginfo packages to do either.
> After enabling CentOS-Debug.repo, what I get is:
> kernel-debuginfo-2.6.32-754.3.5.el6.centos.plus.x86_64
> which doesn't match, since I'm not running the centos.plus kernel,
> so the systemtap script fails (tested only on CentOS 6 for the moment).
> Is there some way to get kernel-debuginfo-2.6.32-754.3.5.el6.x86_64?
> Thanks for any help.
> Cheers,
> Zube

You can find it here:


Because yum thinks the centos.plus version is newer, you'd need to
manually download and install it.