Article ID: 122958, created on Sep 19, 2014, last review on Sep 19, 2014

  • Applies to:
  • Virtuozzo containers for Linux 4.6

Issue date: 2014-09-19

1. What's Included in This Update

This update includes a new Parallels Virtuozzo Containers for Linux 4.6 kernel (2.6.18-028stab116.1) based on the Red Hat Enterprise Linux 5.11 kernel (2.6.18-398.el5). The new kernel introduces stability fixes.

2. Bug Fixes

The new kernel includes a number of stability and security fixes from Red Hat Enterprise Linux 5 kernels:

  • An out-of-bounds memory access flaw was found in the Linux kernel's system call auditing implementation. On a system with existing audit rules defined, a local, unprivileged user could use this flaw to leak kernel memory to user space or, potentially, crash the system. (CVE-2014-3917, 2.6.18-371.12.1.el5)

  • A NULL pointer dereference flaw was found in the rds_iw_laddr_check() function in the Linux kernel's implementation of Reliable Datagram Sockets (RDS). A local, unprivileged user could use this flaw to crash the system. (CVE-2014-2678, 2.6.18-371.11.1.el5)

  • It was found that the Xen hypervisor implementation did not properly clean memory pages previously allocated by the hypervisor. A privileged guest user could potentially use this flaw to read data relating to other guests or the hypervisor itself. (CVE-2014-4021, 2.6.18-371.11.1.el5)

3. Obtaining the Update

You can download and install the update using the vzup2date utility included in the Parallels Virtuozzo Containers for Linux 4.6 distribution set.

4. References

Copyright (c) 1999-2014 Parallels IP Holdings GmbH and its affiliates. All rights reserved.

Search Words




36627b12981f68a16405a79233409a5e 2897d76d56d2010f4e3a28f864d69223 d02f9caf3e11b191a38179103495106f e8e50b42231236b82df27684e7ec0beb

Email subscription for changes to this article
Save as PDF