CentOS Update For Kvm-83-164.el5_ CESA-2010:0898 Centos5 I386 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. KVM is a Linux kernel module built for the standard Red Hat Enterprise Linux kernel. A flaw was found in the way QEMU-KVM handled the reloading of fs and gs segment registers when they had invalid selectors. A privileged host user with access to &quot /dev/kvm&quot could use this flaw to crash the host (denial of service). (CVE-2010-3698) All KVM users should upgrade to these updated packages, which contain a backported patch to correct this issue. Note: The procedure in the Solution section must be performed before this update will take effect.

Affected

kvm-83-164.el5_ on CentOS 5

References

http://lists.centos.org/pipermail/centos-announce/2010-December/017213.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-3698

CVSS	Base Score: 4.6 AV:L/AC:L/Au:S/C:N/I:N/A:C

Related Vulnerabilities

CentOS Update for 389-ds-base CESA-2013:0628 centos6
CentOS Security Advisory CESA-2009:1651 (ntp)
CentOS Security Advisory CESA-2009:0020 (bind)
CentOS Security Advisory CESA-2009:1082 (cups)
CentOS Security Advisory CESA-2009:1206 (libxml2)

CentOS Update for kvm-83-164.el5_ CESA-2010:0898 centos5 i386

Take action and discover your vulnerabilities