Oval Definition:oval:com.redhat.rhsa:def:20140163
Revision Date:2014-02-12Version:636
Title:RHSA-2014:0163: kvm security update (Important)
Description:KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. KVM is a Linux kernel module built for the standard Red Hat Enterprise Linux kernel.

  • A divide-by-zero flaw was found in the apic_get_tmcct() function in KVM's Local Advanced Programmable Interrupt Controller (LAPIC) implementation. A privileged guest user could use this flaw to crash the host. (CVE-2013-6367)

  • A memory corruption flaw was discovered in the way KVM handled virtual APIC accesses that crossed a page boundary. A local, unprivileged user could use this flaw to crash the system or, potentially, escalate their privileges on the system. (CVE-2013-6368)

    Red Hat would like to thank Andrew Honig of Google for reporting these issues.

    All kvm users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. Note: the procedure in the Solution section must be performed before this update will take effect.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2013-6367
    CVE-2013-6367
    CVE-2013-6368
    CVE-2013-6368
    RHSA-2014:0163
    RHSA-2014:0163-00
    RHSA-2014:0163-01
    Platform(s):Red Hat Enterprise Linux 5
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • kmod-kvm is earlier than 0:83-266.el5_10.1
  • AND kmod-kvm is signed with Red Hat redhatrelease2 key
  • kmod-kvm-debug is earlier than 0:83-266.el5_10.1
  • AND kmod-kvm-debug is signed with Red Hat redhatrelease2 key
  • kvm is earlier than 0:83-266.el5_10.1
  • AND kvm is signed with Red Hat redhatrelease2 key
  • kvm-qemu-img is earlier than 0:83-266.el5_10.1
  • AND kvm-qemu-img is signed with Red Hat redhatrelease2 key
  • kvm-tools is earlier than 0:83-266.el5_10.1
  • AND kvm-tools is signed with Red Hat redhatrelease2 key
  • BACK