From ${URL} : Description OpenVZ has issued an update for kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to cause a DoS. For more information: SA57284 SA57424 SA57468 SA57862 SA58569 SA59361 (#1) Solution: Update kernel branch RHEL6 to 042stab093.4. Original Advisory: OpenVZ: http://wiki.openvz.org/Download/kernel/rhel6/042stab093.4 @maintainer(s): since the fixed package is already in the tree, please let us know if it is ready for the stabilization or not.
This was fixed upstream via version 042stab092.3 which hit tree via https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/sys-kernel/openvz-sources/openvz-sources-2.6.32.92.3.ebuild?hideattic=0&view=markup First current stable version in repository is =sys-kernel/openvz-sources-2.6.32.108.5 and no vulnerable version left. So nothing left to do for us. @ Security: Please vote!
GLSA Vote: No