[Announce] Kernel RHEL6 042stab120.18

Vasily Averin vvs at openvz.org
Sun Feb 5 22:55:47 PST 2017


OpenVZ project released an updated RHEL6 based kernel.
Read below for more information. Everyone is advised to update.

Changes and Download
====================
(since 042stab120.16)


* Fixed handling of stored error in a negatively instantiated user key. 
 Key management subsystems could be abused to escalate privileges through
memory corruption. All kernels were affected. (CVE-2015-8539, Important)

* Possible ploop image corruption after unexpected host crash or shutdown.
 All previous 042stab120.x kernels were affected. (PSBM-58500)

* CPT: Incorrect dump of permitted iptables mask could result in failure
 to resume or migrate container or load new iptables rules inside the resumed container.
 All previous 042stab kernels were affected. (PSBM-58278)

For more info and downloads, see:
https://openvz.org/Download/kernel/rhel6/042stab120.18

See also
========
https://www.redhat.com/security/data/cve/CVE-2015-8539.html


Bug reporting
=============
Use http://bugs.openvz.org/ to report any bugs found.

Regards,
    OpenVZ team


More information about the Announce mailing list