Difference between revisions of "Download/kernel/rhel6-testing/042stab117.6/changes"

From OpenVZ Virtuozzo Containers Wiki
Jump to: navigation, search
(Created page with "== Changes == Since {{kernel link|rhel6-testing|042stab117.5}}: * Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result co...")
 
(links to OVZ issues)
 
Line 3: Line 3:
  
 
* Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result could be kernel memory corruption, leading to elevation of privileges or kernel code execution. (CVE-2016-4997, CVE-2016-4998)
 
* Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result could be kernel memory corruption, leading to elevation of privileges or kernel code execution. (CVE-2016-4997, CVE-2016-4998)
* fs.mqueue.* sysctls can be changed inside containers. (OVZ-6757)
+
* fs.mqueue.* sysctls can be changed inside containers. ({{OVZ|6757}})
* fixed work of iputils-ping-20150815 (debian-9) inside containers. (OVZ-6744)
+
* fixed work of iputils-ping-20150815 (debian-9) inside containers. ({{OVZ|6744}})
  
 
=== See also ===
 
=== See also ===
http://seclists.org/oss-sec/2016/q2/599
+
* http://seclists.org/oss-sec/2016/q2/599

Latest revision as of 18:11, 13 September 2016

Changes[edit]

Since 042stab117.5:

  • Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result could be kernel memory corruption, leading to elevation of privileges or kernel code execution. (CVE-2016-4997, CVE-2016-4998)
  • fs.mqueue.* sysctls can be changed inside containers. (OVZ-6757)
  • fixed work of iputils-ping-20150815 (debian-9) inside containers. (OVZ-6744)

See also[edit]