HCSEC-005-MARCH-2026 [SECURITY]
Kernel Security Update – AppArmor Vulnerability (CrackArmor)
Status: Scheduled / Mitigation Implemented
Severity: High
Category: Security
First Observed: March 2026
Last Updated: March 23, 2026
Affected Services: Proxmox VE nodes (shared kernel environments, LXC containers)
Summary
In March 2026, critical vulnerabilities affecting the Linux kernel AppArmor subsystem (“CrackArmor”) were disclosed.
These vulnerabilities may allow local privilege escalation under specific conditions in shared kernel environments.
Impact
-
No active exploitation detected within HOST-C infrastructure
-
No customer data exposure identified
-
Potential risk exists for LXC environments
-
KVM-based virtual machines are not directly affected
Customer Impact
-
Brief service interruption during scheduled maintenance
-
No action required for standard VPS deployments
-
Encrypted VPS require manual unlock via VNC console
Resolution
Updated kernel packages have been deployed across the infrastructure.
A controlled reboot procedure is scheduled to activate the fixes:
Date: 26 March 2026
Time: 10:00 AM (Bucharest Time / EET)
Nodes will be rebooted sequentially to minimize disruption.
Closing Statement
This update is part of HOST-C’s proactive security program. No exploitation was observed, and mitigation has been implemented in accordance with best practices.
— HOST-C Network
"Storage by Design"
