Home > Control panel > Operations notices

Related Links

Notice Links:

Notices

host1199.rimuhosting.com operations notice

PostedSun, 5 Jul 2026 23:57 PM UTC
Sun, 5 Jul 2026 19:57 PM EDT
Last UpdateTue, 7 Jul 2026 04:27 AM UTC (13 hours ago)
Tue, 7 Jul 2026 00:27 AM EDT
StatusOpen
Affected service

Tue, 7 Jul 2026 04:10 AM UTC: Remote hands were unable to resolve the rack issue without causing downtime. We have scheduled a window for this change as below.

Start: 8pm Dallas time on the 13th July
Maintenance duration: Approx 1 hour, expected VPS downtime ~30 minutes.

Customers have the option to move their VPS to an alternate host prior to the window. This can be done from our control panel at any time. Our team is avilable to assist if needed.

host1199.rimuhosting.com requires a physical rack adjustments to secure it better. We are working on that. No downtime is expected.

#

CVE-2026-46331 “Pedit COW” kernel issue

PostedTue, 30 Jun 2026 00:33 AM UTC
Mon, 29 Jun 2026 20:33 PM EDT
Last UpdateTue, 7 Jul 2026 02:04 AM UTC (15 hours ago)
Mon, 6 Jul 2026 22:04 PM EDT
StatusOpen
Affected LocationDallas (TX)

A newly disclosed flaw in the Linux kernel's traffic-control subsystem, now assigned CVE-2026-46331 and referred to as “Pedit COW,” .

https://gbhackers.com/critical-linux-kernel-flaw-2/

It can grant any unprivileged local user full root access on vulnerable systems. If an actor can run code inside a vulnerable server, for example through a compromised website, shell account, or application, this bug may allow them to have unrestricted server access.

Over the last month or two there have been a handful of similar exploits.  This is partly a result of AI-powered work going into finding bugs and improving the kernel.

VM restarts

Due to the severity of the issue we will attempt to restart affected VMs where we are able to boot them onto a patched kernel.

You can run these restarts yourself or disable the restarts or schedule when they run over using our 'server patch' tool at:
https://rimuhosting.com/cp/serverpatchstate.jsp

FYI we wrote a a blog post about how this tool is used.

Mitigations

Where a server is using a modular kernel - e.g. if you boot a VM with pvgrub - you should check with the distributor as soon as possible for updates and additional mitigation steps.

On RimuHosting VPSs, it is possible to disable this attack by setting the following ...

sysctl -w user.max_user_namespaces=0

This temporary fix may have a broader impact, you should test your workloads still operate normally after making this change.

Fixed kernels

We are releasing VM kernels to our hosts with the affected component disabled. For 4.14 and later. A reboot will be required to use those. Please use our kernel selector in our control panel to action that.

You can verify which kernel your VM is running using the command 'uname -r', it will look something like this...:

6.12.0-really95-rh-20260705204515.xenU.x86_64

Fixed kernels will show a build date of 20260705 or newer. Those digits are the date: 2026-07-05.

For 4.14 kernels the PEDIT option was disabled in 20260630 and that kernel is not receiving further updates.  It is recommended you try a newer kernel, e.g. 5.10.

Ongoing work

We are continuing to review this vulnerability, and will be providing updates and further recomendations here. Please subscribe to this notice for updates.

#

Scheduled Network Maintenance - Dallas Transit uplink move

PostedSun, 5 Jul 2026 22:47 PM UTC
Sun, 5 Jul 2026 18:47 PM EDT
Last UpdateSun, 5 Jul 2026 22:47 PM UTC (42 hours ago)
Sun, 5 Jul 2026 18:47 PM EDT
StatusOpen
Affected LocationDallas (TX)

As part of the Dallas network upgrade and ongoing infrastructure improvements, we will be working with the upstream provide to move the transit uplinks.

Maintenance Window:
Start: 9 July 2026, 16:00 Dallas local time
End: 9 July 2026, 22:00 Dallas local time

Impact:
No customer impact is expected.
This uplink is part of our redundant Dallas network design, so traffic is expected to continue routing normally via the available redundant paths during the work. We will monitor routing and connectivity throughout the maintenance window.

#

Kernel bug Bad Epoll (CVE-2026-46242)

PostedSun, 5 Jul 2026 21:58 PM UTC
Sun, 5 Jul 2026 17:58 PM EDT
Last UpdateSun, 5 Jul 2026 21:58 PM UTC (43 hours ago)
Sun, 5 Jul 2026 17:58 PM EDT
StatusOpen

A newly disclosed flaw in the Linux kernel's traffic-control subsystem, assigned CVE-2026-46242, and known as Bad Epoll.

https://github.com/J-jaeyoung/bad-epoll

Bad Epoll (CVE-2026-46242) is a race-condition use-after-free in the Linux kernel's epoll subsystem. This bug lets an unprivileged process potentially become root. It only affects 6.4 or newer kernels.

At this time, we are not aware of any active attacks using this vector.

Mitigations

There are no known mitigations at this time. The bug is in part of the kernel core that is always built in.

Fixed kernels

We are releasing updated VM kernels for 6.6, 6.12, and 6,18. A reboot will be required to use those. Please use our kernel selector in our control panel to action that.

You can verify which kernel your VM is running using the command 'uname -r', it will look something like this...:

6.18.0-really38-rh-20260705204512.xenU.x86_64

Fixed kernels will show a build date of 20260705 or newer. Those digits are the numerical date: 2026 July 6th.

Ongoing work

We are continuing to review this vulnerability, and will be providing updates and further recomendations here. Please subscribe to this notice for updates.

#

Scheduled power maintenance (Sydney)

PostedFri, 3 Jul 2026 04:24 AM UTC
Fri, 3 Jul 2026 00:24 AM EDT
Last UpdateFri, 3 Jul 2026 04:24 AM UTC (109 hours ago)
Fri, 3 Jul 2026 00:24 AM EDT
StatusOpen

Our Sydney site team is completing power maintenance in the following window

Start time: 27 July 2026, 07:00 AEST
End time: 27 July 2026, 17:00 AEST

Detail the site will be running on generator (mains bypass) while annual inspection is completed.

#

Scheduled Network Maintenance (Dallas)

PostedFri, 3 Jul 2026 03:54 AM UTC
Thu, 2 Jul 2026 23:54 PM EDT
Last UpdateFri, 3 Jul 2026 03:54 AM UTC (109 hours ago)
Thu, 2 Jul 2026 23:54 PM EDT
StatusOpen
Affected LocationDallas (TX)

One of our service providers will be doing electrical maintenance and transferring power to their generators. This should cause no downtime due to the high availability setup of the data center

Maintenance Window:
Start: 18 July 2026, 07:00 Dallas local time
End: 18 July 2026, 13:00 Dallas local time

#

Scheduled Network Maintenance (Sydney)

PostedTue, 16 Jun 2026 22:09 PM UTC
Tue, 16 Jun 2026 18:09 PM EDT
Last UpdateFri, 3 Jul 2026 00:36 AM UTC (112 hours ago)
Thu, 2 Jul 2026 20:36 PM EDT
StatusOpen
Affected LocationSydney

Maintenance has been postponed as per below dates and times.

One of our service providers is doing maintenance on their routers that will include minor outage of no longer than 15 minutes on their side.

Maintenance Window:
Start: 14 July 2026, 00:00 AEST
End: 14 July 2026, 06:00 AEST

No downtime is expected during this maintenance. Customers may notice route path changes, but services are expected to remain available.

#

Scheduled Network Maintenance (Dallas)

PostedWed, 1 Jul 2026 22:58 PM UTC
Wed, 1 Jul 2026 18:58 PM EDT
Last UpdateWed, 1 Jul 2026 23:11 PM UTC (6 days ago)
Wed, 1 Jul 2026 19:11 PM EDT
StatusOpen
Affected services

As part of our ongoing infrastructure improvement work, our team will be relocating switches within the racks at our Dallas datacenter.

This work is being carried out to improve the physical rack layout. It will help us prepare the racks for future network upgrades and capacity improvements.

Maintenance Window:
Start: 7 July 2026, 15:00 Dallas local time
End: 7 July 2026, 19:00 Dallas local time

Impact:
Services connected through the affected racks may experience a short network outage of up to 10 minutes while the switches are being moved. We will work to minimise disruption, and some services may not experience any outage.

#