Virtuozzo OnApp KVM Security Update

This update addresses the Foreshadow vulnerabilities (CVE-2018-3620 and CVE-2018-3646) for CentOS 6/7 static KVM compute resources. For more information on vulnerabilities, refer to Foreshadow attack doc.

To mitigate the vulnerabilities on KVM static compute resources we recommend updating the kernel to one of the following versions:

for CentOS 6 - kernel 2.6.32-754.3.5.el6.x86_64
for CentOS 7 - kernel 3.10.0-862.11.6.el7.x86_64

We are currently testing updated kernels and working on CloudBoot images update and will provide further info when available.