Important kernel security update: updated fix for CVE-2017-1000364; new kernel 2.6.32-042stab123.9, Virtuozzo 6.0 Update 12 Hotfix 13 (6.0.12-3681)

Issue date: 2017-07-04

Applies to: Virtuozzo 6.0

Virtuozzo Advisory ID: VZA-2017-061

1. Overview

This update provides a new kernel 2.6.32-042stab123.9 for Virtuozzo 6.0. The new kernel is based on the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.el6 and introduces an update for a security fix.

2. Security Fixes

  • [Important] An updated fix for CVE-2017-1000364 (kernel: heap/stack gap jumping via unbounded stack allocations). The fix released in the 042stab123.8 kernel was not fully correct. (OVZ-6911)

3. Installing the Update

Install the update by running ‘yum update’.

4. References

The JSON file with the list of new and updated packages is available at http://docs.virtuozzo.com/vza/VZA-2017-061.json.