CVE-2021-22555 patching
Incident Report for Aptible
Resolved
This incident has been resolved.
Posted Jul 19, 2021 - 12:08 EDT
Identified
Recently a Linux kernel vulnerability (CVE-2021-22555), which allows for possible privilege escalation, was announced [0]. While Aptible Deploy is not impacted by the published exploits, we will still be taking steps to prevent any potential future exploits of this vulnerability.

As part of our remediation efforts, we will be restarting all App, Bastion, and Build instances in shared stacks today. This will involve restarting Bastion and Build instances, which may result in a small number of operation failures and a short disruption to outbound traffic. Operations which fail due to this outage should work on retry. App restarts will be done using Aptible's zero-downtime release process [1]. As a result, you should not see any impact from these restarts.

Notifications for the patching schedule for dedicated stacks will also be sent out today (July 16).

[0] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22555
[1] https://deploy-docs.aptible.com/docs/releases
Posted Jul 16, 2021 - 09:35 EDT
This incident affected: Aptible Deploy.