4.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
1.9 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
9.4%
The cumulative Virtuozzo ReadyKernel patch was updated with security and stability fixes. The patch applies to all supported kernels of Virtuozzo Hybrid Server 7.0, Virtuozzo Infrastructure Platform, and Virtuozzo Hybrid Infrastructure.
Vulnerability id: CVE-2020-12114
[3.10.0-862.20.2.vz7.73.24 to 3.10.0-1127.8.2.vz7.151.14] Denial of service by corrupting mountpoint reference counter. It was discovered that a race condition was possible between pivot_root() and put_mountpoint() operations. A local unprivileged attacker could exploit this to corrupt mountpoint reference counter and cause a denial of service (kernel crash).
bugzilla.redhat.com/show_bug.cgi?id=1848652
readykernel.com/patch/Virtuozzo-7/readykernel-patch-116.7-109.0-1.vl7/
readykernel.com/patch/Virtuozzo-7/readykernel-patch-131.10-109.0-1.vl7/
readykernel.com/patch/Virtuozzo-7/readykernel-patch-151.14-109.0-1.vl7/
readykernel.com/patch/Virtuozzo-7/readykernel-patch-73.24-109.0-1.vl7/
readykernel.com/patch/Virtuozzo-7/readykernel-patch-73.29-109.0-1.vl7/
readykernel.com/patch/Virtuozzo-7/readykernel-patch-85.17-109.0-1.vl7/
readykernel.com/patch/Virtuozzo-7/readykernel-patch-86.2-109.0-1.vl7/
readykernel.com/patch/Virtuozzo-7/readykernel-patch-96.21-109.0-1.vl7/
4.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
1.9 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
9.4%