CA API gateway - Drovorub is a malware which is affecting Linux kernel version lesser than 3.7 .

book

Article ID: 198629

calendar_today

Updated On:

Products

CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

Drovorub is a malware which is affecting Linux kernel version lesser than 3.7 so the API gateway systems lesser than 3.7 should be upgraded.
It is impacting RHEL and Centos Appliances.

Environment

Release : 9.4

Component : API GATEWAY

Resolution

As per RedHat:.

https://access.redhat.com/articles/5320961

"This malware is not an exploit, and it requires that attackers gain root privileges using another vulnerability before successful installation."

Please ask customer to keep the Gateway updated with the latest Monthly Platform Patches as a best practice.