Article ID: 125199, created on Apr 10, 2015, last review on Apr 10, 2015

Issue date: 2015-04-10

1. What's Included in This Update

This update includes a new Parallels Virtuozzo Containers for Linux 4.6 kernel (2.6.18-028stab118.1) based on the Red Hat Enterprise Linux 5.11 kernel (2.6.18-402.el5). The new kernel introduces a security and stability fix.

2. Bug Fixes

The new kernel includes a security fix from the Red Hat Enterprise Linux 5 kernel:

  • A flaw was found in the way the Linux kernel's splice() system call validated its parameters. On certain file systems, a local, unprivileged user could use this flaw to write past the maximum file size, and thus crash the system. (CVE-2014-7822, 2.6.18-402.el5)

3. Obtaining the Update

You can download and install the update using the vzup2date utility included in the Parallels Virtuozzo Containers for Linux 4.6 distribution set.

4. References

http://rhn.redhat.com/errata/RHSA-2015-0164.html

https://www.redhat.com/security/data/cve/CVE-2014-7822.html


Copyright (c) 1999-2015 Parallels IP Holdings GmbH and its affiliates. All rights reserved.

Search Words

stability

security

bugfix

Email subscription for changes to this article
Save as PDF