Lucene search
VirtuozzoVZA-2022-001HistoryJan 11, 2021 - 12:00 a.m.
[Important] [Security] New kernel 2.6.32-042stab146.2; Virtuozzo 6.0 Update 12 Hotfix 55 (6.0.12-3762)
2021-01-1100:00:00
docs.virtuozzo.com
44
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
5.1%
This update provides a new kernel 2.6.32-042stab146.2 for Virtuozzo 6.0. It is based on the RHEL 6.10 kernel 2.6.32-754.41.2.el6 and provides a security fix.
Vulnerability id: CVE-2021-4155
A data leak flaw was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem allowed for size increase of files with unaligned size. A local attacker could use this flaw to leak data on the XFS filesystem otherwise not accessible to them.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Virtuozzo | 6.0 | x86_64 | parallels-server-bm-release | < 6.0.12-3762 | parallels-server-bm-release-6.0.12-3762.x86_64.rpm |
| Virtuozzo | 6.0 | x86_64 | vzkernel | < 2.6.32-042stab146.2 | vzkernel-2.6.32-042stab146.2.x86_64.rpm |
| Virtuozzo | 6.0 | x86_64 | vzkernel-devel | < 2.6.32-042stab146.2 | vzkernel-devel-2.6.32-042stab146.2.x86_64.rpm |
| Virtuozzo | 6.0 | noarch | vzkernel-firmware | < 2.6.32-042stab146.2 | vzkernel-firmware-2.6.32-042stab146.2.noarch.rpm |
| Virtuozzo | 6.0 | x86_64 | vzmodules | < 2.6.32-042stab146.2 | vzmodules-2.6.32-042stab146.2.x86_64.rpm |
| Virtuozzo | 6.0 | x86_64 | vzmodules-devel | < 2.6.32-042stab146.2 | vzmodules-devel-2.6.32-042stab146.2.x86_64.rpm |
Related
redhat
redhat
(RHSA-2022:0530) Important: kernel security update
2022-02-15 09:06:12
(RHSA-2022:0335) Important: kpatch-patch security update
2022-02-01 10:43:10
(RHSA-2022:0344) Important: kernel security update
2022-02-01 13:56:19
cbl_mariner
cbl_mariner
CVE-2021-4155 affecting package kernel for versions less than 5.15.67.1-4
2022-10-05 23:34:27
CVE-2021-4155 affecting package kernel 5.10.131.1-1
2022-09-17 05:57:05
cvelist
cvelist
CVE-2021-4155
2022-08-24 15:10:19
nessus
nessus
RHEL 8 : kpatch-patch (RHSA-2022:0335)
2022-02-01 00:00:00
RHEL 7 : kernel (RHSA-2022:0530)
2022-02-15 00:00:00
RHEL 8 : kernel (RHSA-2022:0344)
2022-02-02 00:00:00
redhatcve
redhatcve
CVE-2021-4155
2022-05-07 14:17:19
debiancve
debiancve
CVE-2021-4155
2022-08-24 16:15:09
virtuozzo
virtuozzo
f5
f5
K71080411 : Linux kernel vulnerability CVE-2021-4155
2022-04-27 00:00:00
nvd
nvd
CVE-2021-4155
2022-08-24 16:15:09
prion
prion
Design/Logic Flaw
2022-08-24 16:15:00
ubuntucve
ubuntucve
CVE-2021-4155
2021-12-31 00:00:00
veracode
veracode
Information Disclosure
2022-01-30 00:40:56
cve
cve
CVE-2021-4155
2022-08-24 16:15:09
almalinux
almalinux
Important: kernel security and bug fix update
2022-01-19 13:59:09
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2022-01-10 00:00:00
Unbreakable Enterprise kernel security update
2022-01-10 00:00:00
kernel security and bug fix update
2022-01-21 00:00:00
osv
osv
Important: kernel security and bug fix update
2022-01-19 13:59:09
Important: kernel-rt security and bug fix update
2022-01-19 09:43:06
Important: kernel security and bug fix update
2022-01-19 13:59:09
rocky
rocky
kernel security and bug fix update
2022-01-19 13:59:09
kernel-rt security and bug fix update
2022-01-19 22:58:41
kernel-rt security and bug fix update
2022-01-19 09:43:06
ibm
ibm
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0351
2022-01-08 00:00:00
Moderate Photon OS Security Update - PHSA-2021-0461
2021-11-29 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0351
2022-01-13 00:00:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2020-0466, CVE-2022-0492, CVE-2021-4155, CVE-2021-0920
2022-04-26 15:21:28
Fix of CVE: CVE-2021-0920, CVE-2022-0492, CVE-2020-0466, CVE-2021-4155
2022-04-26 15:23:09
ubuntu
ubuntu
Linux kernel vulnerabilities
2022-02-22 00:00:00
Linux kernel (HWE) vulnerabilities
2022-02-18 00:00:00
Linux kernel vulnerabilities
2023-03-06 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5295-1)
2022-02-18 00:00:00
Ubuntu: Security Advisory (USN-5295-2)
2022-02-23 00:00:00
Ubuntu: Security Advisory (USN-5884-1)
2023-02-24 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2022-01-18 18:43:35
Updated kernel packages fix security vulnerabilities
2022-01-18 18:43:35
cloudfoundry
cloudfoundry
USN-5294-2: Linux kernel vulnerabilities | Cloud Foundry
2022-03-11 00:00:00
USN-5298-1: Linux kernel vulnerabilities | Cloud Foundry
2022-04-21 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2022-02-25 15:41:18
amazon
amazon
Important: kernel
2022-02-04 23:25:00
Important: kernel
2022-02-04 23:24:00
Important: kernel
2023-02-17 00:02:00
debian
debian
[SECURITY] [DSA 5050-1] linux security update
2022-01-20 16:46:05
suse
suse
Security update for the Linux Kernel (important)
2022-09-14 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
5.1%
Related for VZA-2022-001