Our Linux pre-generated images used for new installations, as well as the Linux rescue image, are no longer vulnerable to CVE-2016-5195 (otherwise known as Dirty COW.)
The following new install options have been made generally available:
- Beta pre-generated images for FreeBSD 10.3 and 11.0 are available for HVM systems. They are beta because there are some minor tweaks outstanding and we have not yet added IPv6 support, but they should be usable. FreeBSD can also be installed manually from option “6. set bootloader or rescue mode” of the management console. If you are running an older system and would like to install FreeBSD, please contact support.
- Ubuntu Yakkety 16.10 has been added. There are some known issues running in paravirtualized (PV) mode with multiple VCPUs. If you have an older system with multiple VCPUs and would like to install this, please contact us about migrating to HVM mode.
- Debian Jessie with SysVinit pre-installed instead of systemd has been added. While it’s possible to modify the existing image to add SysVinit, we’ve had reports that modifying /etc/inittab was not automatically handled and serial console access was lost.
- NetBSD 7 has been updated to 7.0.2.
- Fedora 24 is available generally and not just for newer systems.
As usual, the source can be found at github.
For existing installations, if you haven’t updated your kernel yet or applied a mitigation for CVE-2016-5195, we recommend you do so. There were some reports previously that CentOS 5 and CentOS 6 were not vulnerable, but this is only true of one of the two types of exploits. Here are links to more information for distributions we’ve at least partially supported: