Oval Definition:oval:com.redhat.rhsa:def:20130608
Revision Date:2013-03-07Version:637
Title:RHSA-2013:0608: kvm security update (Important)
Description:KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. KVM is a Linux kernel module built for the standard Red Hat Enterprise Linux kernel.

  • A flaw was found in the way QEMU-KVM emulated the e1000 network interface card when the host was configured to accept jumbo network frames, and a guest using the e1000 emulated driver was not. A remote attacker could use this flaw to crash the guest or, potentially, execute arbitrary code with root privileges in the guest. (CVE-2012-6075)

    All users of kvm are advised to upgrade to these updated packages, which contain backported patches to correct this issue. Note that the procedure in the Solution section must be performed before this update will take effect.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2012-6075
    RHSA-2013:0608
    RHSA-2013:0608-00
    RHSA-2013:0608-01
    RHSA-2013:0608-01
    Platform(s):Red Hat Enterprise Linux 5
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • kmod-kvm is earlier than 0:83-262.el5_9.1
  • AND kmod-kvm is signed with Red Hat redhatrelease2 key
  • kmod-kvm-debug is earlier than 0:83-262.el5_9.1
  • AND kmod-kvm-debug is signed with Red Hat redhatrelease2 key
  • kvm is earlier than 0:83-262.el5_9.1
  • AND kvm is signed with Red Hat redhatrelease2 key
  • kvm-qemu-img is earlier than 0:83-262.el5_9.1
  • AND kvm-qemu-img is signed with Red Hat redhatrelease2 key
  • kvm-tools is earlier than 0:83-262.el5_9.1
  • AND kvm-tools is signed with Red Hat redhatrelease2 key
  • BACK