[El-errata] ELSA-2013-0727 Important: Oracle Linux 5 kvm security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Apr 9 20:41:55 PDT 2013


Oracle Linux Security Advisory ELSA-2013-0727

https://rhn.redhat.com/errata/RHSA-2013-0727.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kmod-kvm-83-262.0.1.el5_9.3.x86_64.rpm
kmod-kvm-debug-83-262.0.1.el5_9.3.x86_64.rpm
kvm-83-262.0.1.el5_9.3.x86_64.rpm
kvm-qemu-img-83-262.0.1.el5_9.3.x86_64.rpm
kvm-tools-83-262.0.1.el5_9.3.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/kvm-83-262.0.1.el5_9.3.src.rpm



Description of changes:

[kvm-83-262.0.1.el5_9.3]
- Added kvm-add-oracle-workaround-for-libvirt-bug.patch
- Added kvm-Introduce-oel-machine-type.patch

[kvm-83-262.el5_3]
- kvm-kernel-kvm-accept-unaligned-MSR_KVM_SYSTEM_TIME-writes.patch 
[bz#947363]
- Resolves: bz#947363
   (RHEL.5.8.32 guest hang when installing)

[kvm-83-262.el5_2]
- kvm-kernel-KVM-Fix-for-buffer-overflow-in-handling-of-MSR_KVM_S.patch 
[bz#917018]
- kvm-kernel-KVM-Convert-MSR_KVM_SYSTEM_TIME-to-use-kvm_write_gue.patch 
[bz#917022]
- kvm-kernel-KVM-Fix-bounds-checking-in-ioapic-indirect-register-.patch 
[bz#917028]
- kvm-kernel-do-not-GP-on-unaligned-MSR_KVM_SYSTEM_TIME-write.patch 
[bz#bz917019]
- Resolves: bz#917018
   (CVE-2013-1796 kernel: kvm: buffer overflow in handling of 
MSR_KVM_SYSTEM_TIME [rhel-5.9.z])
- Resolves: bz#917022
   (CVE-2013-1797 kernel: kvm: after free issue with the handling of 
MSR_KVM_SYSTEM_TIME [rhel-5.9.z])
- Resolves: bz#917028
   (CVE-2013-1798 kernel: kvm: out-of-bounds access in ioapic indirect 
register reads [rhel-5.9.z])





More information about the El-errata mailing list