New CL6 and hybrid kernels 2.6.32-531.17.1.lve1.2.57 fixes local vulnerability CVE-2014-3153.
We will provide more details on the exploit itself, once it is publish to general public by MITRE CVE Dictionary
CL5 kernels are not vulnerable.
To update CL6 servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el6 kmod-lve-1.2-61.el6
To update hybrid servers:
$ yum install kernel-2.6.32-531.17.1.lve1.2.57.el5h kmod-lve-1.2-61.el5h