Article ID: 116376, created on Jul 2, 2013, last review on May 5, 2014

  • Applies to:
  • Virtuozzo containers for Linux 4.6
-----------------------------------------------------------------------
Synopsis:          New Parallels Virtuozzo Containers 4.6 kernel provides
                   an update with a fix for a critical security issue.
Product:           Parallels Virtuozzo Containers 4.6
Keywords:          "security"

-----------------------------------------------------------------------

This document provides information on the new Parallels Virtuozzo Containers 4.6
kernel, version 2.6.18-028stab107.2.

--------------------------------------------------------------------------------
TABLE OF CONTENTS

1. About This Release
2. Updates Description
3. Obtaining New Kernel
4. References

--------------------------------------------------------------------------------

1. ABOUT THIS RELEASE

The current update for the Parallels Virtuozzo Containers 4.6 kernel provides a
new kernel based on the Red Hat Enterprise Linux 5.9 kernel
(2.6.18-348.4.1.el5). The updated kernel includes a fix for a critical security
issue.

--------------------------------------------------------------------------------

2. UPDATES DESCRIPTION

This update contains a fix for the following security issue:

*  A denial of service flaw was found in a sending message with a specific
   socket option set. A local unprivileged user could use this flaw to crash the
   system, resulting in DoS. (CVE-2013-2224).

   This flaw is not remotely exploitable and requires local login.

--------------------------------------------------------------------------------

3. OBTAINING NEW KERNEL

You can download and install this kernel update using the "vzup2date" utility
included in the Parallels Virtuozzo Containers 4.6 distribution set.

4. REFERENCES

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2224

--------------------------------------------------------------------------------
Copyright (c) 1999-2013 Parallels IP Holdings GmbH and its affiliates. All
rights reserved.

36627b12981f68a16405a79233409a5e 2897d76d56d2010f4e3a28f864d69223 d02f9caf3e11b191a38179103495106f e8e50b42231236b82df27684e7ec0beb

Email subscription for changes to this article
Save as PDF