Kernel security update: Virtuozzo ReadyKernel patch 70.0 for Virtuozzo 7.0.8 and 7.0.8 HF1¶
Issue date: 2019-01-24
Applies to: Virtuozzo 7.0
Virtuozzo Advisory ID: VZA-2019-001
The cumulative Virtuozzo ReadyKernel patch was updated with security and stability fixes. The patch applies to Virtuozzo kernels 3.10.0-862.9.1.vz7.63.3 (7.0.8) and 3.10.0-862.11.6.vz7.64.7 (7.0.8 HF1).
2. Security Fixes¶
[Moderate] A flaw was found in the implementation of ebtables in the Linux kernel. A local attacker in a container could exploit it to consume large amounts of memory, eventually causing denial of service on the host. (PSBM-90803)
[Low] vhost: kernel crash (access out of bounds) in memcpy_fromiovecend(). (PSBM-90291)
3. Bug Fixes¶
tcache was not shrunk in some situations. (PSBM-89403)
Kernel crash (access out of bounds) in SyS_mincore(). (PSBM-90329)
4. Installing the Update¶
Download, install, and immediately apply the patch to the current kernel by running ‘readykernel update’.
The JSON file with the list of new and updated packages is available at https://docs.virtuozzo.com/vza/VZA-2019-001.json.