Virtuozzo Automator 7.0 Update 2 Hotfix 13 (VA MN: 7.0.2-674)

Hotfix 13 for Virtuozzo Automator 7.0.2 provides a stability and usability fix. Vulnerability id: PVA-37631 Virtuozzo 6 nodes could appear as offline in Virtuozzo Automator 7 due to disabled support for TLS 1.0 required by VA 6 agents. As a part of the fix, the 'sslhighsecurity' parameter was add...

[Important] [Security] Fix for a vulnerability in sudo, CVE-2021-3156, for Virtuozzo Hybrid Server 7.x and Virtuozzo 6

The update fixes the vulnerability in sudo registered as CVE-2021-3156. The new sudo packages are available for Virtuozzo Hybrid Server 7.x and Virtuozzo 6. Vulnerability id: CVE-2021-3156 A flaw was found in sudo. A heap-based buffer overflow was found in the way sudo parses command line...

Virtuozzo 6 : java-1.8.0-openjdk / java-1.8.0-openjdk-debug / etc (VZLSA-2019-0416)

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Virtuozzo 6 : php / php-bcmath / php-cli / php-common / php-dba / etc (VZLSA-2019-3287)

An update for php is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

Virtuozzo 6 : python / python-devel / python-libs / python-test / etc (VZLSA-2019-1467)

An update for python is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Virtuozzo 6 : sudo / sudo-devel (VZLSA-2019-3755)

An update for sudo is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

Virtuozzo 6 : qemu-guest-agent / qemu-img / qemu-kvm / etc (VZLSA-2019-1181)

An update for qemu-kvm is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Virtuozzo 6 : libX11 / libX11-common / libX11-devel (VZLSA-2020-4946)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4946 advisory. - libX11: integer overflow leads to double free in locale handling CVE-2020-14363 Note that Nessus has not tested for this issue but has instead reli...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2020-045)

According to the version of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerability : - hw: Special Register Buffer Data Sampling SRBDS. Note that Tenable Network Security has extracted the...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2020-037)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - Kernel: NetLabel: null pointer dereference while receiving CIPSO packet with null category may cause...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-089)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - hw: Machine Check Error on Page Size Change IFU - hw: Intel GPU blitter manipulation can allow for...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-067)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A new software page cache side channel attack scenario was discovered in operating systems that implemen...

Virtuozzo 6 : parallels-kernel-modules / etc (VZA-2019-063)

According to the version of the parallels-kernel-modules / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerability : - Fixed possible corruption of VM configuration after restoration from backup by means of third-party solutions. The built-...

Virtuozzo 6 : java-1.8.0-openjdk / java-1.8.0-openjdk-debug / etc (VZLSA-2019-1811)

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Product update: Virtuozzo 6.0 Update 12 Hotfix 44 (6.0.12-3746)

The Hotfix 44 for Virtuozzo 6.0.12 fixes a security issue. Vulnerability id: PSBM-96909 Fixed possible corruption of VM configuration after restoration from backup by means of third-party solutions. The built-in backup restoration tool 'prlctl restore' is not affected. User data inside restored V...

Virtuozzo 6 : libvirt / libvirt-client / libvirt-devel / etc (VZLSA-2019-1578)

An update for libvirt is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-052)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A double-free can happen in idrremoveall in lib/idr.c in the Linux kernel. An unprivileged local attacke...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-037)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the implementation of the 'fill buffer', a mechanism used by modern CPUs when a...

Virtuozzo 6 : parallels-server-bm-release / shaman / vzkernel / etc (VZA-2019-033)

According to the version of the parallels-server-bm-release / shaman / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerability : - A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the Linux kernel that...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2016-104)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - Stack overflow via ecryptfs and /proc/$pid/environ. It was found that stacking a file system over procfs...