Article ID: 121765, created on May 26, 2014, last review on May 27, 2014

  • Applies to:
  • Virtuozzo containers for Linux 4.7
-----------------------------------------------------------------------
Synopsis:          A new Parallels Virtuozzo Containers for Linux 4.7
                   kernel update addressing security, performance, and
  stability issues.
Product:           Parallels Virtuozzo Containers for Linux 4.7
Keywords:          'bugfix' 'stability' 'security'
 
-----------------------------------------------------------------------
 
This document provides information on the new Parallels Virtuozzo Containers for Linux 4.7 kernel, version 2.6.32-042stab090.2.
 
CONTENTS
 
1. About This Update
2. Update Description
3. Obtaining the New Kernel
4. References
 
1. ABOUT THIS UPDATE
 
The current update for the Parallels Virtuozzo Containers for Linux 4.7 kernel provides a new kernel based on the Red Hat Enterprise Linux 6.5 kernel (2.6.32-431.17.1.el6). The updated kernel includes a number of security, performance, and stability fixes.
 
2. UPDATE DESCRIPTION
 
This update includes the following fixes and improvements:
 
- Checkpointing code was enhanced to support ip6tables rules saving and restoring (PSBM-25872, OVZ# 2916).
 
- Various kernel panics caused by stack overflow could be triggered by high disk I/O activity (PSBM-23683, OVZ# 2846).
 
- The "numabalanced" service is designed to move Containers between NUMA nodes in order to increase overall system performance. Previously, such migrations resulted in confusingly huge values of "numastat:node_other" and "numastat:numa_miss" parameters (PSBM-26309).
 
- Network console configured via bonded network interface could cause kernel panic (PSBM-26668).
 
3. OBTAINING THE NEW KERNEL
 
You can download and install this kernel update using the vzup2date utility included in the Parallels Virtuozzo Containers for Linux 4.7 distribution set.
 
4. REFERENCES
 
https://rhn.redhat.com/errata/RHSA-2014-0475.html
 
https://www.redhat.com/security/data/cve/CVE-2013-6383.html
https://www.redhat.com/security/data/cve/CVE-2014-0077.html
https://www.redhat.com/security/data/cve/CVE-2014-2523.html
 
--------------------------------------------------------------------------------
Copyright (c) 1999-2014 Parallels IP Holdings GmbH and its affiliates. All rights reserved.

0c05f0c76fec3dd785e9feafce1099a9 2897d76d56d2010f4e3a28f864d69223 d02f9caf3e11b191a38179103495106f e8e50b42231236b82df27684e7ec0beb

Email subscription for changes to this article
Save as PDF