Article ID: 115198, created on Nov 23, 2012, last review on May 9, 2014

  • Applies to:
  • Virtuozzo containers for Linux 4.7
-----------------------------------------------------------------------
Synopsis:          New Parallels Virtuozzo Containers 4.7 kernel provides an update with security and stability fixes.
Product:           Parallels Virtuozzo Containers 4.7
Keywords:          "bugfix" "stability" "security"

-----------------------------------------------------------------------

This document provides information on the new Virtuozzo Containers 4.7 kernel, version 2.6.32-042stab065.3.

--------------------------------------------------------------------------------
TABLE OF CONTENTS

1. About This Release
2. Updates Description
3. Obtaining New Kernel
4. Installing New Kernel
5. Required RPMs
6. References

--------------------------------------------------------------------------------

1. ABOUT THIS RELEASE

The current update for the Virtuozzo Containers 4.7 kernel provides a new
kernel based on the Red Hat Enterprise Linux 6.3 kernel (2.6.32-279.14.1.el6).
The updated kernel includes a number of security and stability fixes.

--------------------------------------------------------------------------------

2. UPDATES DESCRIPTION

This update contains fixes for the following issues:

* The libc:getlogin() function could return a wrong UID for processes that were
  executed with "vzctl exec" or "vzctl enter" inside a Container running Ubuntu
  12.04. (OVZ 2402)

* The devtmpfs file system permissions were changed to 0755 when mounted
  inside a Container. (PCLIN-31293, OVZ 2397)

* The net interface indexes could be renumbered on a Container shutdown.
  (OVZ 2414)

* When performing an online migration of a Container, a kernel panic could
  occur in the delayfs_preopen() function if an NFS volume was mounted inside
  the Container. (PCLIN-31310)

* When performing an online migration of a Container, a kernel panic could
  occur under heavy network traffic. (OVZ 2407)

* Support for the online migration of POSIX timers was added. This is needed
  in particular to migrate Containers with the running "ntpd" service.
  (PCLIN-31230, OVZ 2324)

* The "perf" package is now built for the Parallels Virtuozzo Containers 4.7
  kernel. The packages are available for download on the OpenVZ website at
  http://wiki.openvz.org.

--------------------------------------------------------------------------------

3. OBTAINING NEW KERNEL

You can download and install this kernel update using the vzup2date utility
included in the Parallels Virtuozzo Containers 4.7 distribution set.

--------------------------------------------------------------------------------

4. INSTALLING NEW KERNEL

To install the update, do the following:

I. Use the "rpm -ihv" command to install the new kernel and Virtuozzo modules.

# rpm -ivh vzkernel-2.6.32-042stab065.3.i686.rpm \
vzmodules-2.6.32-042stab065.3.i686.rpm
Preparing...                ################################# [100%]
    1:vzkernel               ################################# [50%]
    2:vzmodules              ################################# [100%]

    Please DO NOT USE the "rpm -Uhv" command to install the kernel. Otherwise,
    all the kernels previously installed on your system may be removed from
    the Hardware Node.

II. You can adjust your boot loader configuration file to have the new kernel
    loaded by default. If you use the LILO bootloader, please do not forget to
    execute the "lilo" command to write the changes to the boot sector:

     # lilo
     Added Virtuozzo2 *
     Added Virtuozzo1
     Added linux
     Added linux-up

III. Reboot your computer with the "shutdown -r now" command to boot the new
     kernel.

--------------------------------------------------------------------------------

5. REQUIRED RPMS

Depending on the processor installed on the Hardware Node, the following RPM
packages are included in the kernel update:

x86 kernels:

- SMP:
   vzkernel-2.6.32-042stab065.3.i686.rpm
   vzmodules-2.6.32-042stab065.3.i686.rpm

x86_64 kernels:

- SMP:
   vzkernel-2.6.32-042stab065.3.x86_64.rpm
   vzmodules-2.6.32-042stab065.3.x86_64.rpm

--------------------------------------------------------------------------------

6. REFERENCES

http://rhn.redhat.com/errata/RHSA-2012-1426.html

https://www.redhat.com/security/data/cve/CVE-2012-1568.html
https://www.redhat.com/security/data/cve/CVE-2012-2133.html
https://www.redhat.com/security/data/cve/CVE-2012-3400.html
https://www.redhat.com/security/data/cve/CVE-2012-3511.html

--------------------------------------------------------------------------------
Copyright (c) 1999-2012 Parallels Holdings, Ltd. and its affiliates. All rights
reserved.

0c05f0c76fec3dd785e9feafce1099a9 2897d76d56d2010f4e3a28f864d69223 d02f9caf3e11b191a38179103495106f e8e50b42231236b82df27684e7ec0beb

Email subscription for changes to this article
Save as PDF