Issue date: 2014-09-19
1. What's Included in This Update
This update includes a new Parallels Virtuozzo Containers for Linux 4.6 kernel (2.6.18-028stab116.1) based on the Red Hat Enterprise Linux 5.11 kernel (2.6.18-398.el5). The new kernel introduces stability fixes.
2. Bug Fixes
The new kernel includes a number of stability and security fixes from Red Hat Enterprise Linux 5 kernels:
An out-of-bounds memory access flaw was found in the Linux kernel's system call auditing implementation. On a system with existing audit rules defined, a local, unprivileged user could use this flaw to leak kernel memory to user space or, potentially, crash the system. (CVE-2014-3917, 2.6.18-371.12.1.el5)
A NULL pointer dereference flaw was found in the rds_iw_laddr_check() function in the Linux kernel's implementation of Reliable Datagram Sockets (RDS). A local, unprivileged user could use this flaw to crash the system. (CVE-2014-2678, 2.6.18-371.11.1.el5)
- It was found that the Xen hypervisor implementation did not properly clean memory pages previously allocated by the hypervisor. A privileged guest user could potentially use this flaw to read data relating to other guests or the hypervisor itself. (CVE-2014-4021, 2.6.18-371.11.1.el5)
3. Obtaining the Update
You can download and install the update using the vzup2date utility included in the Parallels Virtuozzo Containers for Linux 4.6 distribution set.
Copyright (c) 1999-2014 Parallels IP Holdings GmbH and its affiliates. All rights reserved.