About RHSA-2012:0721

Solution Unverified - Updated -

Environment

-Red Hat Enterprise Linux 5
-Xen

Issue

  • Should I updates our system to RHSA-2012:0721 to not-xen kernel?

Resolution

The RHSA include fix for following CVEs.

https://access.redhat.com/security/cve/CVE-2012-0217
https://access.redhat.com/security/cve/CVE-2012-2934

Both of above mentioned as follows.
This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6, and Red Hat Enterprise MRG, as those versions have a guard page between the end of the user-mode accessible virtual address space and the beginning of the non-canonical area due to CVE-2005-1764 fix.

This issue did affect the versions of Xen hypervisor as shipped with Red Hat Enterprise Linux 5. A kernel-xen update for Red Hat Enterprise Linux 5 is available to address this flaw.

Root Cause

RHEL5's kernel packages are released identical version.

  • Component
  • xen

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.