[Ksplice][Virtuozzo 4 Updates] New updates available via Ksplice (CU-2.6.18-028stab070.5)
Tim Abbott
tabbott at ksplice.com
Sat Sep 18 21:48:29 PDT 2010
Synopsis: CU-2.6.18-028stab070.5 can now be patched using Ksplice
CVEs: CVE-2010-3081
Systems running Virtuozzo 4 or the OpenVZ RHEL 5 kernel can now use
Ksplice to patch against the latest Parallels Virtuozzo Containers kernel
security update, CU-2.6.18-028stab070.5.
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack on Virtuozzo 4 or OpenVZ on
RHEL 5 install these updates. You can install these updates by running:
# uptrack-upgrade -y
DESCRIPTION
* CVE-2010-3081: Privilege escalation through stack underflow in compat.
A flaw was found in the 32-bit compatibility layer for 64-bit systems.
User-space memory was allocated insecurely when translating system call
inputs to 64-bit. A stack pointer underflow could occur when using the
"compat_alloc_user_space" method with an arbitrary length input, as in
getsockopt.
SUPPORT
Ksplice support is available at support at ksplice.com or +1 765-577-5423.
More information about the Ksplice-VZ4-Updates
mailing list