Closed oceanfabreeze closed 2 months ago
CVE-2022-29901 is an impact of RHEL 9 on our hardware.
A flaw was found in hw. Non-transparent sharing of branch predictor targets between contexts in some Intel(R) processors may potentially allow an authorized user to enable information disclosure via local access.
Attempted to manually make changes to remediate the impact but unfortunately its still firing in my Cloud Console.
Duo has different dependencies for RHEL 9. FYI.
Ansible is in a mixed state. Will have to be rebuilt....
EDIT: Now it's showing fine? RHEL Cloud Console is weird.
Snapshot systems before upgrading.
Rollback Ansible to RHEL 8.8
Looks like ansible is working fine now? Trying to figure out if there's still an issue on that server....
Duo is working fine on ansible.....not sure if I remediated or if it was remediated on its own?
Upgrading pi-hole
Pi-Hole Success
RHEL Upgrade issues resolved by ESX upgrade
Starting grabber.
CIFS not supported by inplace upgrade. Commented out. Will need to reconfigure when upgrade completes.
Grabber updated. Webbys next.
Grabber needed package update for OpenVPN and Transmission.
Deleted Webby due to failed upgrade. This was likely to happen and honestly im okay with moving to public hosting.
Just home automation server is left. Might more to OEL due to OCI compatibility.
running preupgrade tasks on star
CIFS is the only warning, running upgrade on star now.
star is at 9.3
running leapp on Jarvis
Jarvis had broken Grub2 boot loader. Attempted repair but was unable to repair via traditional means. Easier to just reclaim and issue new server.
New Server is Pallet.
Pallet is up! Will need to do some securing, but at least we have automation back. and on linux 9.3 :)
Upgrade RHEL boxes to latest version.