Earlier today, CVE-2015-3456, a security vulnerability known commonly as VENOM was published earlier this morning. This vulnerability affects all of our clients on our KVM virtualization environment but does as well affect Xen virtual machines as well. There is no indication that this vulnerability is being actively exploited “in the wild”.
We have been working tirelessly today to patch our hypervisors, but this patch also requires that we pause and resume your VPS for it to take effect. We may be required to force stop and start your server.
We will begin this process very shortly, starting at 17:00 PST and expected downtime per server to be under a minute. We apologize for the short notice, but the scope of this vulnerability did require us to take immediate action to ensure that your data, and that of others, is secure.
To learn more about this vulnerability, please see the attached links:
Thank you for your patience and understanding. We apologize in advance for any issues caused by this emergency maintenance.
*Update* 13May2015 – 19:00 PST – All emergency maintenance has been completed.
