For a project such as OpenVZ, security of the software is of paramount importance. This is Let's explain how we assure that OpenVZ is secure.

Note that To achieve the current maximum possible security and stability, stable kernel branch is OpenVZ kernels are based on the 2.6.18 kernelRed Hat Enterprise Linux kernels, which is quite old. This is done to achieve the maximum possible security are conservative and stabilitywell-maintained. By using an older enterprise kernel as a base (rather than latest vanilla kernel), we avoid adding new bugs or security holes, but still the old bugs and holes ones are getting discovered and fixed, and the kernel matures. Big vendors such as Novell and Red Hat do the same for their enterprise Linux offerings: for example, Red Hat Enterprise Linux 4 is based on kernel 2.6.9.

 OpenVZ has undergone a thorough security audit, [https://lists.openvz.org/pipermail/users/2015-October/006563.html performed by Solar Designer ] in winter 2005. He found a single issue in OpenVZ kernel code and a couple of issues in mainstream Linux kernel code — all of them were fixed, and the mainstream fixes were sent to the LKML.