[Announce] Kernel RHEL6 042stab126.2
Vasily Averin
vvs at openvz.org
Mon Dec 18 14:13:37 MSK 2017
OpenVZ project released an updated RHEL6 based kernel.
Read below for more information. Everyone is advised to update.
Changes and Download
====================
(since 042stab126.1)
* [Important] dccp_disconnect() set the socket state to DCCP_CLOSEDbut did not properly free some of the resources associated with that socket. This could result in a use-after-free and could potentially allow an attacker to escalate their privileges. (CVE-2017-8824)
* [Important] The Linux kernel is vulnerable to a use-after-free issue. It could occur while closing a xfrm netlink socket, in xfrm_dump_policy_done. A user/process could use this flaw to potentially escalate their privileges on a system. (CVE-2017-16939)
For more info and downloads, see:
https://openvz.org/Download/kernel/rhel6/042stab126.2
See also
========
https://www.redhat.com/security/data/cve/CVE-2017-8824.html
https://www.redhat.com/security/data/cve/CVE-2017-16939.html
Bug reporting
=============
Use http://bugs.openvz.org/ to report any bugs found.
Regards,
OpenVZ team
More information about the Announce
mailing list