Article ID: 116084, created on May 14, 2013, last review on May 11, 2014

  • Applies to:
  • Virtuozzo containers for Linux
-----------------------------------------------------------------------
Synopsis:          New Parallels Virtuozzo Containers 4.7 kernel
                   provides an update with a fix for critical security issue.
Product:           Parallels Virtuozzo Containers 4.7
Keywords:          "security"

-----------------------------------------------------------------------

This document provides information on the new Parallels Virtuozzo Containers 4.7 kernel, version 2.6.32-042stab076.8.

--------------------------------------------------------------------------------
TABLE OF CONTENTS

1. About This Release
2. Updates Description
3. Obtaining New Kernel
4. References

--------------------------------------------------------------------------------

1. ABOUT THIS RELEASE

The current update for the Parallels Virtuozzo Containers 4.7 kernel provides
a new kernel based on the Red Hat Enterprise Linux 6.3 kernel
(2.6.32-279.22.1.el6). The updated kernel includes a fix for a critical security
issue.

--------------------------------------------------------------------------------

2. UPDATES DESCRIPTION

This update contains fixes for the following security issue:

* A flaw was found in the way theperf array index was sanitized.
  A local unprivileged user could use this flaw to increase their privileges
  on the system. (CVE-2013-2094)

--------------------------------------------------------------------------------

3. OBTAINING NEW KERNEL

You can download and install this kernel update using the "vzup2date" utility
included in the Parallels Virtuozzo Containers 4.7 distribution set.

--------------------------------------------------------------------------------

4. REFERENCES

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2094

--------------------------------------------------------------------------------
Copyright (c) 1999-2013 Parallels Holdings, Ltd. and its affiliates. All rights
reserved.

e8e50b42231236b82df27684e7ec0beb 2897d76d56d2010f4e3a28f864d69223 d02f9caf3e11b191a38179103495106f

Email subscription for changes to this article
Save as PDF