News/updates
Contents
- 1 Kernel RHEL6 042stab123.8
- 2 Kernel RHEL6 042stab123.6
- 3 Kernel RHEL6 042stab123.4
- 4 Kernel RHEL6 042stab123.3
- 5 Kernel RHEL6 042stab123.2
- 6 Kernel RHEL6 042stab123.1
- 7 Kernel RHEL6 042stab120.20
- 8 Kernel RHEL5 028stab122.1
- 9 Kernel RHEL6 042stab120.19
- 10 Kernel RHEL5 028stab121.1
- 11 Kernel RHEL6 042stab120.18
- 12 Kernel RHEL6 042stab120.16
- 13 Legacy templates update Nov 2016
- 14 Kernel RHEL6 042stab120.11
- 15 Kernel RHEL6 testing 042stab120.7
- 16 Kernel RHEL6 042stab120.6
- 17 Kernel RHEL5 028stab120.3
- 18 Kernel RHEL6 042stab120.5
- 19 Kernel RHEL6 testing 042stab120.4
- 20 Kernel RHEL6 042stab120.3
- 21 Kernel RHEL6 042stab120.2
- 22 Kernel RHEL6 042stab117.16
- 23 Kernel RHEL5 028stab120.2
- 24 Kernel RHEL6 042stab117.14
- 25 OpenVZ 7.0 GA
- 26 Kernel RHEL6 testing 042stab117.5
- 27 Kernel RHEL6 testing 042stab117.4
- 28 Kernel RHEL6 testing 042stab117.3
- 29 Kernel RHEL6 testing 042stab117.2
- 30 Kernel RHEL6 testing 042stab117.1
- 31 Kernel RHEL6 042stab116.1
- 32 ploop 1.15
- 33 Kernel RHEL6 testing 042stab115.2
- 34 Kernel RHEL6 testing 042stab114.5
- 35 Virtuozzo 7 Beta
- 36 Kernel RHEL6 042stab113.21
- 37 Kernel RHEL6 testing 042stab113.21
- 38 Kernel RHEL6 testing 042stab113.18
- 39 Kernel RHEL6 stable 042stab113.17
- 40 Kernel RHEL6 testing 042stab113.17
- 41 Kernel RHEL5 stable 028stab120.1
- 42 Kernel RHEL5 testing 028stab120.1
- 43 Kernel RHEL5 stable 028stab119.6
- 44 Older updates
Kernel RHEL6 042stab123.8
Stackguard security bugfix backported from mainline
--Vvs (talk) 13:16, 27 June 2017 (UTC)
Kernel RHEL6 042stab123.6
Stability bugfix for nodes with VLAN in bridge
--Vvs (talk) 13:15, 27 June 2017 (UTC)
Kernel RHEL6 042stab123.4
Several security and bug fixes
--Vvs (talk) 13:13, 27 June 2017 (UTC)
Kernel RHEL6 042stab123.3
NFS-related security and bug fixes
--Vvs (talk) 14:57, 18 May 2017 (UTC)
Kernel RHEL6 042stab123.2
Security fix
--Vvs (talk) 05:55, 4 May 2017 (UTC)
Kernel RHEL6 042stab123.1
Rebase to RHEL6.9 kernel, security and bugfixes
--Vvs (talk) 07:50, 7 April 2017 (UTC)
Kernel RHEL6 042stab120.20
Security fix
--Vvs (talk) 11:23, 27 March 2017 (UTC)
Kernel RHEL5 028stab122.1
Rebase to 2.6.18-419.el5, fix for DCCP security
--Vvs (talk) 10:40, 21 March 2017 (UTC)
Kernel RHEL6 042stab120.19
Security and bugfixes
--Vvs (talk) 08:47, 7 March 2017 (UTC)
Kernel RHEL5 028stab121.1
Rebase to 2.6.18-417.el5, fix for CVE-2016-7117
--Vvs (talk) 07:47, 6 February 2017 (UTC)
Kernel RHEL6 042stab120.18
Security (CVE-2015-8539) and bugfixes (ploop, cpt)
--Vvs (talk) 06:47, 6 February 2017 (UTC)
Kernel RHEL6 042stab120.16
Bugfixes (net, cpt)
--Vvs (talk) 12:57, 22 December 2016 (UTC)
Legacy templates update Nov 2016
Added Ubuntu 16.10 (to beta). Moved Fedora 20, 21, 22, Ubuntu 15.04, 15.10 to unsupported (EOL). All existing templates are updated.
[ Downloads... ]
--Kir (talk) 23:33, 30 November 2016 (UTC)
Kernel RHEL6 042stab120.11
Security and bugfixes (net, cpt, filesystems)
--Vvs (talk) 09:06, 23 November 2016 (UTC)
Kernel RHEL6 testing 042stab120.7
Fixed crash on restore of unix socket and crash in ixgbe driver
--Vvs (talk) 17:56, 2 November 2016 (UTC)
Kernel RHEL6 042stab120.6
fixed hang after nfs mount with "lock" option, ploop-over-nfs cleanup
--Vvs (talk) 17:08, 28 October 2016 (UTC)
Kernel RHEL5 028stab120.3
Fixed CVE-2016-5195 mm: privilege escalation via MAP_PRIVATE COW breakage
--Vvs (talk) 15:33, 26 October 2016 (UTC)
Kernel RHEL6 042stab120.5
updated fix for CVE-2016-5195, fixed host hang on CT resume, fixed crash on load of sb_edac module
--Vvs (talk) 10:26, 26 October 2016 (UTC)
Kernel RHEL6 testing 042stab120.4
Fixed crash on boot during loading of sb_edac module (OVZ-6809)
--Vvs (talk) 13:12, 24 October 2016 (UTC)
Kernel RHEL6 042stab120.3
Fixed CVE-2016-5195 mm: privilege escalation via MAP_PRIVATE COW breakage
--Vvs (talk) 14:12, 22 October 2016 (UTC)
Kernel RHEL6 042stab120.2
Rebase to RHEL6u8 kernel 2.6.32-642.6.1.el6. Security, bugfixes, enhancements
--Vvs (talk) 14:07, 22 October 2016 (UTC)
Kernel RHEL6 042stab117.16
Mount of nfs with lock option inside several containers can cause node hang.
--Vvs (talk) 11:22, 4 October 2016 (UTC)
Kernel RHEL5 028stab120.2
Fixed a kernel panic triggerable via the move_pages() syscall.
--Vvs 12:00, 14 September 2016 (EDT)
Kernel RHEL6 042stab117.14
Rebase to RHEL6u8 kernel 2.6.32-642.el6 (security, bug fixes, enhancements, see RHSA-2016-0855). Fixes and enhancements in KVM, UBC, ext4, networking, cpt.
--Vvs 15:00, 13 September 2016 (EDT)
OpenVZ 7.0 GA
OpenVZ 7.0 has been released. The new release focuses on merging OpenVZ and Virtuozzo source codebase, replacing our own hypervisor with KVM.
Key changes in comparison to the last stable OpenVZ release:
- OpenVZ 7.0 becomes a complete Linux distribution based on our own VzLinux.
- The main difference between the Virtuozzo (commercial) and OpenVZ (free) versions are the EULA, packages with paid features, and Anaconda installer.
- The user documentation is publicly available.
- EZ templates can be used instead of tarballs with template caches.
- Additional features (see announce)
--SergeyB (talk) 16:58, 25 July 2016 (EDT)
Kernel RHEL6 testing 042stab117.5
Fix in cpt.
--SergeyB (talk) 05:45, 20 June 2016 (EDT)
Kernel RHEL6 testing 042stab117.4
Fixes in swap and cpt.
--SergeyB (talk) 05:54, 14 June 2016 (EDT)
Kernel RHEL6 testing 042stab117.3
Ploop, CPT fixes and fixed crash on mount of non-EXT4 filesystems.
--SergeyB (talk) 08:32, 3 June 2016 (EDT)
Kernel RHEL6 testing 042stab117.2
Fixes in CPT, CPU hotplug and numabalanced improvements.
--SergeyB (talk) 01:39, 31 May 2016 (EDT)
Kernel RHEL6 testing 042stab117.1
Rebase to RHEL6u8 kernel 2.6.32-642.el6. Improved ext4 defragmentation. Fixes in CPT.
--Kir (talk) 20:10, 25 May 2016 (EDT)
Kernel RHEL6 042stab116.1
Rebase to RHEL6 kernel 2.6.32-573.26.1.el6. Security, bug and stability fixes.
--Kir (talk) 20:09, 25 May 2016 (EDT)
ploop 1.15
Support for e4defrag2 on compact. Docker-related fixes. Fixes for Alpine Linux and newest GCC. Many other fixes and improvements.
--Kir (talk) 22:28, 29 April 2016 (EDT)
Kernel RHEL6 testing 042stab115.2
Rebase to RHEL6u8 beta kernel 2.6.32-621.el6.
--SergeyB (talk) 08:33, 6 April 2016 (EDT)
Kernel RHEL6 testing 042stab114.5
Proper fix for CVE-2016-3156. Fix for kernel BUG in cfq-iosched (OVZ-6651). Fix for kernel crash inside pick_next_task_fair() (PSBM-44475). Write to CIFS share hangs (OVZ-6642). ub memcg: fake use_hierarhy file is required for KVM's libvirtd (OVZ-6660). Other fixes.
--SergeyB (talk) 08:10, 30 March 2016 (EDT)
Virtuozzo 7 Beta
This Virtuozzo 7.0 Beta offers the following major improvements:
Unified management of containers and KVM virtual machines with the prlctl tool and SDK. You get a single universal toolset for all CT/VM management needs.
Autoballooning and kernel same-page merging that allows overcommitting memory resources in the smartest way possible with an insignificant impact on customer workloads.
Memory hotplugging for containers and VMs that allows both increasing and reducing CT/VM memory size on the fly, without the need to reboot. Your customers can now scale their workloads without any downtime. This feature also enables you to make PAYG offerings, allowing customers to change VM resources depending on workload and potentially pay less.
Memory guarantees for both containers and virtual machines.
Ability to manage containers and VMs with libvirt and virt-manager. If you used to manage VMs with libvirt, you can do it in Virtuozzo in absolutely the same way.
Guest tools for Windows and Linux VMs.
--SergeyB (talk) 05:53, 29 March 2016 (EDT)
Kernel RHEL6 042stab113.21
IPv6 link-local address was being assigned to slave interfaces in bonding which resulted in DAD and network routing issues. (PSBM-42433). kswap activity needed to be restricted in case of high-order requests (PSBM-44291). Force charge swapin readahead pages if in ub0. (PSBM-44857). Missing bounds check in ipt_entry structure in netfilter. (PSBM-45193, CVE-2016-3134). IPv6 connect could cause DoS via NULL pointer dereference (PSBM-45219, CVE-2015-8543). Pipe buffer state corruption after unsuccessful atomic read from pipe (PSBM-45328, CVE-2016-0774). hostapd was broken in early RHEL6.7 kernels (OVZ-6649).
--SergeyB (talk) 05:48, 29 March 2016 (EDT)
Kernel RHEL6 testing 042stab113.21
Missing bounds check in ipt_entry structure in netfilter. (PSBM-45193, CVE-2016-3134). IPv6 connect could cause DoS via NULL pointer dereference (PSBM-45219, CVE-2015-8543). Pipe buffer state corruption after unsuccessful atomic read from pipe (PSBM-45328, CVE-2016-0774). hostapd was broken in early RHEL6.7 kernels. (OVZ-6649)
--SergeyB (talk) 05:47, 29 March 2016 (EDT)
Kernel RHEL6 testing 042stab113.18
bonding: Prevent IPv6 link local address on enslaved devices (PSBM-42433). kswap activity restriction in case high-order requests (PSBM-44291). force charge swapin readahead pages if in ub0 (PSBM-44857)
--SergeyB (talk) 10:22, 14 March 2016 (EDT)
Kernel RHEL6 stable 042stab113.17
Crash in restore_one_vfsmount() on restoring shared non-master mounts (PSBM-42471). Introduced FADV_DEACTIVATE flag in fadvise() to be able to move file pages from the active to the inactive list (PSBM-42664). Race between keyctl_read() and keyctl_revoke() could crash the host (PSBM-43799, CVE-2015-7550). Under certain circumstances, backup/restore via CBT interface could hang the host (PSBM-43936). Second-level quota in simfs containers was broken in 042stab113.x kernels (OVZ-6655).
--SergeyB (talk) 06:37, 14 March 2016 (EDT)
Kernel RHEL6 testing 042stab113.17
Crash in restore_one_vfsmount() on restoring shared non-master mounts (PSBM-42471). Introduced FADV_DEACTIVATE flag in fadvise() to be able to move file pages from the active to the inactive list (PSBM-42664). Race between keyctl_read() and keyctl_revoke() could crash the host (PSBM-43799, CVE-2015-7550). Under certain circumstances, backup/restore via CBT interface could hang the host (PSBM-43936). Second-level quota in simfs containers was broken in 042stab113.x kernels (OVZ-6655).
--SergeyB (talk) 06:37, 14 March 2016 (EDT)
Kernel RHEL5 stable 028stab120.1
Rebase to RHEL5 kernel 2.6.32-408.el5. Fixes for CVE-2015-5364, CVE-2015-5366.
--SergeyB (talk) 07:30, 2 February 2016 (EST)
Kernel RHEL5 testing 028stab120.1
Rebase to RHEL5 kernel 2.6.32-408.el5. Fixes for CVE-2015-5364, CVE-2015-5366.
--SergeyB (talk) 04:30, 25 January 2016 (EST)
Kernel RHEL5 stable 028stab119.6
Improved accounting for network-related memory objects (PCLIN-32553). Introduced a per-container limit for the number of mounts (PCLIN-32554). Introduced a per-container limit for IPv4 network interface aliases (PCLIN-32555).
--SergeyB (talk) 09:25, 3 January 2016 (EST)