The system kernel version issues (false-positive)
I got this alarm in my WHM security advisor:
As you can see I'm already running the newer kernel version, reboot is not changing the situation and I still get this alarm after new scan. Also there are no errors in system logs. The kernel is updated by the system automaticaly.
It would be nice to gate some advises about how to fix this alarm and prevent it from appearing as false-positive.
Additional info:
server runs on AWS ubuntu 24.04
-
I replied to your other thread at https://support.cpanel.net/hc/en-us/community/posts/39254992668951-Detected-1-process-that-is-running-outdated-executables-jumpcloud-agent about this issue.
0 -
cPRex It is clearly not my server problem.
My point:
- latest HWE Kernel version for AWS Ubuntu server 22.04 - is 6.8
- latest HWE Kernel version for AWS Ubuntu server 24.04 - is 6.17My server is setup from official AWS ubuntu 24.04 image and only couple of months ago cPanel oficially switched to 24.04 and I redeployed my server from the scratch.
So it is a 100% issue with the version migration so it should be patched on cPanel side.
Security advisor is matching latest versions for different systems.
Running on Ubuntu 24.04 it should match the latest kernel version for it, but not for previous 22.04.0 -
It may not be an issue unique to your machine, but at this point we aren't able to reproduce on our side so we'd need to see it in action. Are you able to create a ticket?
0 -
cPRex I can create a ticket, but my server is closed by AWS SG and firewalls, so it is not accessable from outside my network, so it will be hard to give support access to server.
Here is some additional info for reproduce:uname -r
6.17.0-1009-awsdpkg -l | grep -E 'linux-image|linux-aws'
ii linux-aws 6.17.0-1009.9~24.04.2 amd64 Complete Linux kernel for Amazon Web Services (AWS) systems.
ii linux-aws-6.17-headers-6.17.0-1007 6.17.0-1007.7~24.04.1 all Header files related to Linux kernel version 6.17.0
ii linux-aws-6.17-headers-6.17.0-1009 6.17.0-1009.9~24.04.2 all Header files related to Linux kernel version 6.17.0
ii linux-aws-6.17-tools-6.17.0-1007 6.17.0-1007.7~24.04.1 amd64 Linux kernel version specific tools for version 6.17.0-1007
ii linux-aws-6.17-tools-6.17.0-1009 6.17.0-1009.9~24.04.2 amd64 Linux kernel version specific tools for version 6.17.0-1009
rc linux-image-6.14.0-1018-aws 6.14.0-1018.18~24.04.1 amd64 Signed kernel image aws
ii linux-image-6.17.0-1007-aws 6.17.0-1007.7~24.04.1 amd64 Signed kernel image aws
ii linux-image-6.17.0-1009-aws 6.17.0-1009.9~24.04.2 amd64 Signed kernel image aws
ii linux-image-aws 6.17.0-1009.9~24.04.2 amd64 Linux kernel image for Amazon Web Services (AWS) systems.I use AWS public image:
amazon/ubuntu/images/hvm-ssd-gp3/ubuntu-noble-24.04-amd64-server-20251212
ami-01f79b1e4a5c64257
cPanel instalation was done using command and script provided on official page.
jumpcloud-agent is installed using command and script provided on official page.
cPanel Security Advisor Version: 1.04
There was no additional changes made to the system apart from:
sudo apt update
sudo apt full-upgrade0 -
Perfect - let me do some testing with this and I'll let you know what I find!
0 -
Thanks for providing me with those additional details. I've confirmed the behavior and opened case CPANEL-52293 with our developers so they can get that adjusted.
As far as the jumpcloud agent issues, I'm not sure there's much I can do for that as it's not something that is provided by cPanel or the OS and isn't something we test on our end, but it's also possible that the fix to the kernel issue may also take care of that problem in the interface.
I've linked this thread to the case so if I hear an update on my end I'll be sure to post!
0 -
cPRex Thanks
0 -
You're very welcome!
0
Please sign in to leave a comment.
Comments
8 comments