Kernel update: Virtuozzo ReadyKernel patch 48.0 for Virtuozzo 7.0.7

Issue date: 2018-04-10

Applies to: Virtuozzo 7.0

Virtuozzo Advisory ID: VZA-2018-019

1. Overview

The cumulative Virtuozzo ReadyKernel patch was updated with stability fixes. The patch applies to the Virtuozzo 7.0 kernel 3.10.0-693.17.1.vz7.43.10 (7.0.7).

2. Bug Fixes

  • If a container used its own network namespace for tun devices, suspend/resume and live migration of said container would fail with errors like ‘Can’t create tun device’. NOTE: Both this ReadyKernel patch and updated CRIU are needed to fix the issue. (PSBM-79229)

  • It was discovered that IPv6 routing tables incorrectly handled routing rules for throw routes. This happened because errors were not propagated properly up to the fib_rules_lookup(). (PSBM-81798)

  • It was discovered that incorrect container state could be reported in /sys/fs/cgroup/ve/CTID/ve.state in some cases, which confused user-space tools. As a result, such a container could remain mounted after ‘shutdown -h now’ was performed in it. (PSBM-82766)

  • Potential kernel crash in fs/file.c: out-of-bounds access to the file descriptor table. (PSBM-82984)

3. Installing the Update

Download, install, and instantly apply the patch to the current kernel by running ‘readykernel update’.

4. References

The JSON file with the list of new and updated packages is available at