[Announce] Kernel RHEL5 028stab122.4 (v2)
Vasily Averin
vvs at openvz.org
Fri Sep 29 18:27:12 MSK 2017
v2: fixed incorrect CVE reference
OpenVZ project released an updated RHEL5 based kernel.
Read below for more information. Everyone is advised to update.
Changes and Download
====================
(since 028stab122.3)
* [Important] A flaw was found in the way the Linux kernel loaded ELF executables.
Provided that an application was built as Position Independent Executable (PIE),
the loader could allow part of that application's data segment to map over
the memory area reserved for its stack, potentially resulting in memory corruption.
An unprivileged local user with access to SUID (or otherwise privileged) PIE binary
could use this flaw to escalate their privileges on the system. (CVE-2017-1000253)
See also
========
https://www.redhat.com/security/data/cve/CVE-2017-1000253.html
For more info and downloads, see:
https://openvz.org/Download/kernel/rhel5/028stab122.4
Bug reporting
=============
Use http://bugs.openvz.org/ to report any bugs found.
Regards,
OpenVZ team
More information about the Announce
mailing list