From ${URL} : Rebase to new RHEL6.5 kernel 2.6.32-431.29.2.el6 (security and bug fixes, see link below) See also: RHSA-2014-1167 @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
All the sys-kernel/openvz-sources pending security bugs are solved in the "maintainers" side, I mean, the fixed versions are in the tree, they are stabilized, and the old ones removed. Hence, I think that all this bugs should probably change their status instead of keep waiting for some maintainer action :/
This was fixed via https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/sys-kernel/openvz-sources/openvz-sources-2.6.32.93.5.ebuild?hideattic=0&view=log First stable version in repository is =sys-kernel/openvz-sources-2.6.32.108.5. No vulnerable version left in tree. So nothing left to do for us. @ Security: Please vote!