[Announce] Kernel RHEL5 028stab122.3
Vasily Averin
vvs at openvz.org
Tue Jul 4 14:08:30 MSK 2017
OpenVZ project released an updated RHEL5 based kernel.
Read below for more information. Everyone is advised to update.
Changes and Download
====================
(since 028stab122.2)
* [Important] A flaw was found in the way memory was being allocated
on the stack for user space binaries. If heap (or different memory region)
and stack memory regions were adjacent to each other, an attacker could
use this flaw to jump over the stack guard gap, cause controlled memory
corruption on process stack or the adjacent memory region, and thus increase
their privileges on the system. This is a kernel-side mitigation which
increases the stack guard gap size from one page to 1 MiB to make successful
exploitation of this issue more difficult. (CVE-2017-1000364)
See also
========
https://www.redhat.com/security/data/cve/CVE-2017-1000364.html
For more info and downloads, see:
https://openvz.org/Download/kernel/rhel5/028stab122.3
Bug reporting
=============
Use http://bugs.openvz.org/ to report any bugs found.
Regards,
OpenVZ team
More information about the Announce
mailing list