About RHSA-2012:0721
Environment
-Red Hat Enterprise Linux 5
-Xen
Issue
- Should I updates our system to RHSA-2012:0721 to not-xen kernel?
Resolution
The RHSA include fix for following CVEs.
https://access.redhat.com/security/cve/CVE-2012-0217
https://access.redhat.com/security/cve/CVE-2012-2934
Both of above mentioned as follows.
This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6, and Red Hat Enterprise MRG, as those versions have a guard page between the end of the user-mode accessible virtual address space and the beginning of the non-canonical area due to CVE-2005-1764 fix.
This issue did affect the versions of Xen hypervisor as shipped with Red Hat Enterprise Linux 5. A kernel-xen update for Red Hat Enterprise Linux 5 is available to address this flaw.
Root Cause
RHEL5's kernel packages are released identical version.
This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.
Comments