Welcome, Guest Login

Support Center

Kernel security update: CVE-2017-7645 and other; new kernel 2.6.32-042stab123.3, Virtuozzo 6.0 Update 12 Hotfix 9 (6.0.12-3676)

Last Updated: May 11, 2017 10:45AM UTC

Issue date: 2017-05-11

Affected products: Virtuozzo 6.0

Virtuozzo Advisory ID: VZA-2017-037

1. Overview

This update provides a new kernel 2.6.32-042stab123.3 for Virtuozzo 6.0. The new kernel is based on the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.el6 and provides security fixes as well as stability bug fixes.

2. Security Fixes

  • [Important] The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly have unspecified other impact via crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c. (CVE-2017-7895)
  • [Important] The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allowed remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c. (CVE-2017-7645)

3. Bug Fixes

  • Node with containers running over an NFS share could crash during container resize operations. A degradation in 042stab123.x kernels. (PSBM-65555)
  • Under certain rare conditions, if host resources were lacking, starting a container with NFS support could crash the host. All 042stab kernels were affected. (PSBM-65550)

4. Installing the Update

Install the update by running 'yum update'.

5. References

The JSON file with the list of new and updated packages is available at http://docs.virtuozzo.com/vza/VZA-2017-037.json.

Open a new case

  • You can call our Support Team:

     +1 855-466-6670  Toll-free
     +1 425-689-7142  US
     +44 203-389-8331  UK
     +49 8914-379-4365  DE
     +7 499-609-2754  RU
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
Invalid characters found