Welcome, Guest Login

Support Center

Kernel security update: CVE-2017-15265; new kernel 2.6.32-042stab126.1, Virtuozzo 6.0 Update 12 Hotfix 18 (6.0.12-3688)

Last Updated: Nov 21, 2017 12:12PM UTC

Issue date: 2017-11-20

Affected products: Virtuozzo 6.0

Virtuozzo Advisory ID: VZA-2017-107

1. Overview

This update provides a new Virtuozzo 6.0 kernel 2.6.32-042stab126.1 based on the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.16.1.el6. The new kernel inherits several non-security bugfixes from the RHEL kernel (as we have already fixed the security ones) and introduces new security and stability fixes.

2. Security Fixes

  • [Moderate] A use-after-free vulnerability was found when issuing an ioctl to a sound device. This could allow a user to exploit a race condition and create memory corruption or possibly privilege escalation. (CVE-2017-15265)

3. Bug Fixes

  • Hidden a warning observed during read of '/proc/vz/fairsched/*/cpu.proc.stat' due to the incorrectly calculated 'iowait' parameter. (PSBM-56083)
  • Container network interfaces (both venet and veth) did not show all dropped packets in the interface statistics. (PSBM-75049)
  • Under certain conditions, node could be crashed during restore of a container with an active NFS mount. (PSBM-76898)

4. Installing the Update

Install the update by running 'yum update'.

5. References

The JSON file with the list of new and updated packages is available at http://docs.virtuozzo.com/vza/VZA-2017-107.json.

Open a new case

  • You can call our Support Team:

     +1 855-466-6670  Toll-free
     +1 425-689-7142  US
     +44 203-389-8331  UK
     +49 8914-379-4365  DE
     +7 499-609-2754  RU
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
Invalid characters found