Linux VServer Project ProcFS Weak Sharing Permissions Vulnerability

Linux VServer Project ProcFS Weak Sharing Permissions Vulnerability

Solution:
Gentoo has released advisory GLSA 200407-16 dealing with this and other issues. They have advised that users should upgrade to the latest available sources for their system:

# emerge sync

# emerge -pv your-favorite-sources
# emerge your-favorite-sources

# # Follow usual procedure for compiling and installing a kernel.
# # If you use genkernel, run genkernel as you would do normally.

For more information please see the referenced Gentoo advisory.

The vendor has released an update, which includes a tool to provide for proc security:

VServer Linux-VServer 1.20

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/

VServer Linux-VServer 1.21

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/

VServer Linux-VServer 1.22

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/

VServer Linux-VServer 1.23

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/

VServer Linux-VServer 1.24

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/

VServer Linux-VServer 1.25

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/

VServer Linux-VServer 1.26

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/

VServer Linux-VServer 1.27

VServer Linux-VServer Stable Release 1.28
http://www.13thfloor.at/vserver/s_release/v1.28/