Welcome, Guest Login

Support Center

Product security update: Virtuozzo 6.0 Update 12 Hotfix 2 (6.0.12-3658)

Last Updated: Feb 03, 2017 11:45AM UTC

Issue date: 2017-01-25

Affected products: Virtuozzo 6.0

Virtuozzo advisory ID: VZA-2017-003

1. Overview

The new packages for Virtuozzo 6.0 introducing a security fix.

2. Security Fixes

  • [Moderate] A vulnerability within vzpkg could allow a malicious user to perform a basic symlink attack resulting in files being moved outside of the container and onto the host file system. The issue only affected containers based on CentOS 5. (PSBM-58425)

3. Installing the Update

Install the update by running 'yum update'.

The JSON file with the list of new and updated packages included in this update is available at http://docs.virtuozzo.com/vza/VZA-2017-003.json.

Open a new case
















  • You can call our Support Team:

     +1 855-466-6670  Toll-free
     +1 425-689-7142  US
     +44 203-389-8331  UK
     +49 8914-379-4365  DE
     +7 499-609-2754  RU
e13d0138f9baaceff06b8753a609e5c0@virtuozzo.desk-mail.com
https://cdn.desk.com/
false
desk
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete