Article ID: 121910, created on Jun 5, 2014, last review on Jun 23, 2014

  • Applies to:
  • Virtuozzo 6.0
Synopsis:          The new Parallels Cloud Server 6.0 update provides stability, usability, and security fixes.
Issue date:        2014-06-06
Product:           Parallels Cloud Server 6.0
Keywords:          'stability' 'usability' 'security'
1. What's Included in This Update
The new packages for Parallels Cloud Server 6.0 provide a kernel security fix as well as fixes for guest and command line tools.
2. Bug Fixes
- Under certain conditions, virtual machines may crash. (#PSBM-27006)
- The prlctl create --uuid command does not work with the --vmtype vm option.  (#PSBM-27046)
- Pinkie Pie discovered an issue in the futex subsystem that allows a local user  to gain ring 0 control via the futex syscall. An unprivileged user could use this flaw to crash the kernel (resulting in denial of service) or for privilege escalation. Using this vulnerability, a local unprivileged user of a Container could potentially crash the Hardware Node or gain Host root privileges. (#CVE-2014-3153)
All Parallels Cloud Server 6.0 users are advised to update their tools packages.
3. Obtaining the Update
You can download and install the update using the yum utility included in the Parallels Cloud Server 6.0 distribution.
4. References
Copyright (c) 1999-2014 Parallels Holdings, Ltd. and its affiliates. All rights reserved.

c62e8726973f80975db0531f1ed5c6a2 2897d76d56d2010f4e3a28f864d69223 0dd5b9380c7d4884d77587f3eb0fa8ef

Email subscription for changes to this article
Save as PDF