[Announce] Kernel RHEL6 042stab120.20
Vasily Averin
vvs at openvz.org
Mon Mar 27 04:28:29 PDT 2017
OpenVZ project released an updated RHEL6 based kernel.
Read below for more information. Everyone is advised to update.
Changes and Download
====================
(since 042stab120.19)
* A flaw was discovered in the Linux kernel's key subsystem.
Invoking the request_key() system call with a specially crafted
set of arguments could result in a NULL-pointer dereference
inside the search_keyring() function.
A local unprivileged user could use this vulnerability to crash the system.
The vulnerability could be exploited from inside containers.
(CVE-2017-2647, Important)
For more info and downloads, see:
https://openvz.org/Download/kernel/rhel6/042stab120.20
See also
========
https://www.redhat.com/security/data/cve/CVE-2017-2647.html
Bug reporting
=============
Use http://bugs.openvz.org/ to report any bugs found.
Regards,
OpenVZ team
More information about the Announce
mailing list