Welcome, Guest Login

Support Center

Virtuozzo 6.0 Update 11 Hotfix 14 (6.0.11-3478)

Last Updated: Sep 05, 2016 02:37PM UTC

Issue date:        2016-09-05

1. What's Included in This Update

This update includes a new Virtuozzo 6.0 kernel 2.6.32-042stab117.14 based on the Red Hat Enterprise Linux 6.8 kernel 2.6.32-642.el6. The new kernel introduces stability and security fixes.

2. Bug Fixes

- The fix for CVE-2016-5696 (for details, visit [1]). An attacker with knowledge of a connections client IP, server IP, and server port can abuse the challenge ACK mechanism and remotely inject or control a TCP stream contents in a connection between a Linux device and its connected client/server. All 042stab kernels are affected. (PSBM-50954)

- Node can crash and reboot due to a crash in nfsd_inetaddr_event on container stop if the NFS server has been started on host. 117.x kernels only are affected. (PSBM-49999)

- cpt: Crash after restore of Unix sockets with in-flight file descriptors. The issue can result in node crash after suspended containers are resumed. All 042stab kernels are affected. (PSBM-51254, PSBM-51351)

- CISCO UCS eNIC driver wraps untagged traffic into vlan0. The node and virtual environments may experience network connectivity issues after rebooting the system to the kernel 2.6.32-042stab112.15 or newer, or after upgrading the Cisco UCS firmware if said kernel or newer is already used. The issue occurs if Cisco UCS hardware is used and eNIC driver version 2.1.1.67 (shipped by default with said kernel) is in use by one of the adapters VMs are bridged to (for details, visit [2]). Kernels 042stab112.15 and newer are affected. (PSBM-51149)

- Memory corruption during dump of containers with shared tmpfs mounts can lead to node crash or soft lockup on any mount-related operation on node or inside containers. This is a special case of a more global issue with similar symptoms (PSBM-47639) that was fixed in kernel 042stab117.2. All 042stab kernels are affected. (OVZ-6779)

3. Obtaining the Update

You can download and install the update using the yum utility included in the Virtuozzo 6.0 distribution.

4. References

[1] https://access.redhat.com/security/cve/CVE-2016-5696
[2] https://help.virtuozzo.com/customer/portal/articles/2549710

--------------------------------------------------------------------------------
Copyright (c) 1999-2016 Parallels IP Holdings GmbH and its affiliates. All rights reserved.

Open a new case
















  • You can call our Support Team:

     +1 855-466-6670  Toll-free
     +1 425-689-7142  US
     +44 203-389-8331  UK
     +49 8914-379-4365  DE
     +7 499-609-2754  RU
e13d0138f9baaceff06b8753a609e5c0@virtuozzo.desk-mail.com
https://cdn.desk.com/
false
desk
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete