Important kernel security update: updated fix for CVE-2017-1000364; new kernel 2.6.32-042stab123.9 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0¶
Issue date: 2017-07-04
Applies to: Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0
Virtuozzo Advisory ID: VZA-2017-060
This update provides a new kernel 2.6.32-042stab123.9 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0. The new kernel is based on the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.el6 and introduces an update for a security fix.
2. Security Fixes¶
[Important] An updated fix for CVE-2017-1000364 (kernel: heap/stack gap jumping via unbounded stack allocations). The fix released in the 042stab123.8 kernel was not fully correct. (OVZ-6911)
3. Installing the Update¶
Install the update with the ‘vzup2date’ utility included in the distribution.
The JSON file with the list of new and updated packages is available at http://docs.virtuozzo.com/vza/VZA-2017-060.json.