7.0
7.0
Docs menu
MENU

Virtuozzo OnApp 6.0 Xen Security Update

This update addresses the ZombieLoad vulnerabilities (RIDL ([MFBDS] CVE-2018-12130, [MLPDS] CVE-2018-12127, [MDSUM] CVE-2019-11091, and Fallout ([MSBDS] CVE-2018-12126) for CentOS6/7 Xen CloudBoot compute resources. For more information on vulnerabilities, refer to ZombieLoad Attack Issues doc.

To mitigate the vulnerabilities on Xen CloudBoot compute resources we recommend updating the following packages:

CentOS 6

  • kernel 4.9.177-35.el6.x86_64
  • Xen version 4.8.5.21.g752fb21a29-1.el6

CentOS 7

  • kernel 4.9.177-35.el7.x86_64
  • Xen version 4.10.3.38.g48bd9061a2-1.el7

Use CloudBoot Compute Resources and CloudBoot Backup Server upgrade procedures to install the update. ‘Simple reboot’ and ‘Migrate and Reboot’ options are available.

KeyTypeRelease NotesAffects Version/s
CLOUDBOOT-451Fix

Updated the following components for CentOS 6 Xen compute resources to address the CVE-2018-12130, CVE-2018-12126, CVE-2018-12127, and the CVE-2019-11091 issue:

  • A kernel version to 4.9.177-35.el6.x86_64
  • A UFS file-system driver, based on the kernel version 4.9.177-35.el6.x86_64 and patched with super-ufs_fs_write.patch
  • Xen version to 4.8.5.21.g752fb21a29-1.el6
5.0-6.0.0-159
CLOUDBOOT-454Fix

Updated the following components for CentOS 7 Xen compute resources to address the CVE-2018-12130, CVE-2018-12126, CVE-2018-12127, and the CVE-2019-11091 issue:

  • kernel version 4.9.177-35.el7.x86_64
  • A UFS file-system driver, based on the kernel version 4.9.177-35.el7.x86_64 sources and patched with super-ufs_fs_write.patch
  • Xen version to 4.10.3.38.g48bd9061a2-1.el7
  • The netxtreme2 drivers version to 7.14.54
5.2-6.0.0-159