The Redhat Network at Soft Layer includes RHN Satellite and Proxy servers.When your Red Hat server is provisioned it is automatically registered to Soft Layer's RHN Satellite server via the appropriate proxy server.
Our engineers continually test kernel and service pack upgrades and post related information (including drivers) to assist in the upgrade process.
RHN Subscription For Redhat operating systems, Soft Layer provides Redhat Network Satellite servers to install critical and non-critical security updates.
Red Hat covers the topic via these security advisories (which basically urge updating): All Samba versions from 3.5.0 up to 4.6.5 except for 4.4.14, 4.5.10 and 4.6.4 are vulnerable to Samba Cry, unless SELinux security controls — which are basically like application firewalls — are in use to secure the target system.
Fortunately, the default SELinux policy prevents the loading of outside modules not in Samba's module directories so the exploit cannot be triggered.
It does require being able to utilize authentication credentials against the target system, but if passwords are weak or nonexistent, this can be easily accomplished.
Samba updates are available from Red Hat via their Satellite and Subscription Management solutions which provide centralized patch management options.
It's also possible to mitigate the threat via a manual basis if you can't patch your systems for some reason. Another mitigation method involves implementing segregated networks, something of which I am a huge fan from an organizational and security standpoint.
This involves mounting the Samba share file system in use with the "noexec" option to block the exploit. If your Samba servers are on a separate network from potential threats and traffic between the two networks is being blocked, Samba Cry cannot be leveraged.
Of course, this may not be an overnight solution but it bears consideration for the future as it can certainly help protect against the vulnerabilities which around bound to be discovered down the road.
To get started with Docker EE on Red Hat Enterprise Linux, make sure you meet the prerequisites, then install Docker.
Unlike Wanna Cry, Samba Cry is a remote code execution vulnerability, not ransomware.