Red Hat Security Advisory 2017-3295-01

Red Hat Security Advisory 2017-3295-01 – The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix: It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting in an uninitialized memory disclosure to user space. A local user could use this flaw to read information belonging to other users.

Link: https://packetstormsecurity.com/files/145165/RHSA-2017-3295-01.txt

Red Hat Security Advisory 2017-3369-01

Red Hat Security Advisory 2017-3369-01 – KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Security Fix: Quick Emulator, compiled with qemu_map_ram_ptr to access guests’ RAM block area, is vulnerable to an OOB r/w access issue. The crash can occur if a privileged user inside a guest conducts certain DMA operations, resulting in a DoS.

Link: https://packetstormsecurity.com/files/145167/RHSA-2017-3369-01.txt

Red Hat Security Advisory 2017-3368-01

Red Hat Security Advisory 2017-3368-01 – Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm package provides the user-space component for running virtual machines that use KVM. Security Fix: Quick Emulator, compiled with the PC System Emulator with multiboot feature support, is vulnerable to an OOB r/w memory access issue. The issue could occur due to an integer overflow while loading a kernel image during a guest boot. A user or process could use this flaw to potentially achieve arbitrary code execution on a host.

Link: https://packetstormsecurity.com/files/145168/RHSA-2017-3368-01.txt