Welcome, Guest Login

Support Center

Virtuozzo (formerly Parallels Cloud Server) 6.0 Update 5 Hotfix 11 (6.0.5-1811)

Last Updated: Sep 08, 2016 10:49AM UTC
Synopsis:          The new Parallels Cloud Server 6.0 tools update provides a
  security fix.
Issue date:        2014-04-10
Product:           Parallels Cloud Server 6.0
Keywords:          'security'

1. What's Included in This Update

The new packages for Parallels Cloud Server 6.0 provide a user-level tool fix
for the 'Heartbleed' security issue.

2. Problem description

This update fixes the following issue:

- The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not
  properly handle Heartbeat Extension packets, which allows remote attackers to
  obtain sensitive information from process memory via crafted packets that
  trigger a buffer over-read, as demonstrated by reading private keys, related
  to d1_both.c and t1_lib.c, aka the Heartbleed bug. (CVE-2014-0160)

All Parallels Cloud Server 6.0 users are advised to update tools packages and
reboot servers.

3. Installing the update

You can download and install this update using the yum utility included in the
Parallels Cloud Server 6.0 distribution set.

4. References


Copyright (c) 1999-2014 Parallels IP Holdings GmbH and its affiliates.
All rights reserved.

Open a new case

  • You can call our Support Team:

     +1 855-466-6670  Toll-free
     +1 425-689-7142  US
     +44 203-389-8331  UK
     +49 8914-379-4365  DE
     +7 499-609-2754  RU
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
Invalid characters found