32-bit Compatibility Layer Vulnerability

[Vitaliy K.]

We need to inform you that a critical vulnerability in the 32-bit compatibility layer for 64-bit systems was recently reported.
Here's a description of the problem:

A vulnerability in the 32-bit compatibility layer for 64-bit systems was
reported. It is caused by insecure allocation of user space memory when
translating system call inputs to 64-bit. A stack pointer underflow can occur
when using the "compat_alloc_user_space" method with an arbitrary length input.

In this connection, we are forced to disable 32/64-bit compatibility layer in Linux kernel on our 64-bit machines until a reliable fix for the problem is released, to prevent possible hacking attempts and to secure the servers.

One of the possible consequences of this measure is the loss of compatibility with FrontPage extensions. This feature will be re-enabled as soon as the problem is fixed.

The list of the affected servers is provided below:

Shared servers:
buzz2.webhostingbuzz.com
buzzsg4.whbdns.com
milkyway.whbdns.com
panda.whbdns.com
server01.webhostingbuzz.com
server02.webhostingbuzz.com
server03.webhostingbuzz.com
server04.webhostingbuzz.com
shared3.ultrawhb.com
ss2.webhostingbuzz.co.uk
buzz4.whbdns.com

Reseller servers:
rs-ng-1.whbdns.com
rs1.abstractdns.com
rs2.abstractdns.com
rs2.webhostingbuzz.co.uk
rsl4.whbdns.com

Please accept our apologies for the inconvenience. Your understanding is highly appreciated.

[Valery M.]

We have installed the latest kernel version on all the servers aforementioned. The vulnerability issue is fixed by now and the functionality of 32-bit applications (such as Frontpage)has been restored.

Please contact us via our helpdesk at whbsupport.com in case of any issues related.