6,534
edits
Changes
links to OVZ issues
* Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result could be kernel memory corruption, leading to elevation of privileges or kernel code execution. (CVE-2016-4997, CVE-2016-4998)
* fs.mqueue.* sysctls can be changed inside containers. ({{OVZ-|6757}})* fixed work of iputils-ping-20150815 (debian-9) inside containers. ({{OVZ-|6744}})
=== See also ===
* http://seclists.org/oss-sec/2016/q2/599