[Announce] Kernel RHEL6 042stab123.8

Vasily Averin vvs at openvz.org
Tue Jun 27 16:34:13 MSK 2017


OpenVZ project released an updated RHEL6 based kernel.
Read below for more information. Everyone is advised to update.

Changes and Download
====================
(since 042stab123.6)

* [Important] A flaw was found in the way memory was being allocated
on the stack for user space binaries. If heap (or different memory region)
and stack memory regions were adjacent to each other, an attacker could
use this flaw to jump over the stack guard gap, cause controlled memory
corruption on process stack or the adjacent memory region, and thus increase
their privileges on the system. This is a kernel-side mitigation which
increases the stack guard gap size from one page to 1 MiB to make successful
exploitation of this issue more difficult. (CVE-2017-1000364)

For more info and downloads, see:
https://openvz.org/Download/kernel/rhel6/042stab123.8

See also
========
https://www.redhat.com/security/data/cve/CVE-2017-1000364.html

Bug reporting
=============
Use http://bugs.openvz.org/ to report any bugs found.

Regards,
    OpenVZ team


More information about the Announce mailing list