From http://kb.sp.parallels.com/en/123301: «A vulnerability in the RHEL6-based kernel discovered during internal security audit could allow access to the host filesystem from inside a Container. Only the kernels from 2.6.32-042stab057.1 to 2.6.32-042stab093.5 are affected. Kernel update is highly recommended. (#PSBM-29594)» The problem is fixed in 042stab094.7: https://openvz.org/Download/kernel/rhel6/042stab094.7 This is a critical vulnerability, please update ebuilds ASAP. Reproducible: Always
The ebuild has been bumped to openvz-sources-2.6.32.94.7, so I guess this can be closed. I'm not doing it because of the notice which claims the Security Team will take care of that. Thanks!
This bug is old. No vulnerable versions in tree.