[security-announce] Kernel: Security update

Tudor Florea tudor.florea at enea.com
Thu Jul 9 10:27:17 CEST 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

             Enea Linux Security Advisory

===================================================================
Product/package:  Enea-Linux-4.0 / kernel (x86/romley-ivb: 3.10.38)
Severity: Moderate
CVE Names: CVE-2015-4692
Layer: meta-enea
===================================================================

This security patch fixes a null pointer dereference in
kvm_apic_has_events function


Signed patch and README files
================================
0089-kernel-x86-kvm-CVE-2015-4692.README.asc
0089-kernel-x86-kvm-CVE-2015-4692.patch.asc

Description
===========
Malicious (or egregiously buggy) userspace can trigger
null pointer dereference in kvm_apic_has_events function.

References:
http://www.openwall.com/lists/oss-security/2015/06/21/1
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4692

How to apply the patches
=======================
 - Preparation
Make sure that you have an installation of Enea Linux and
have applied the existing patches in the right order.

wget https://linux.enea.com/4.0/Enea-Linux-4.0.tar.gz
tar zxf Enea-Linux-4.0.tar.gz
cd Enea-Linux-4.0/poky/
<Fetch and apply the existing patches >

 - Fetch and apply the new patch
cd Enea-Linux-4.0/poky/meta-enea
wget https://linux.enea.com/4.0/patches/\
0089-kernel-x86-kvm-CVE-2015-4692.patch.asc
patch -p1 < ./0089-kernel-x86-kvm-CVE-2015-4692.patch.asc

Contact Info
============
If you have any questions regarding the security patches and security
updates please contact security at enea.com.

Enea Security Team
Tudor Florea
www.enea.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAEBCAAGBQJVnjBhAAoJEMCI2qnpaXcsR3YH/AxwizvWhedyrDwHsY/hOxNp
QTfC5TYhRhxVELGu1lnEVK/EA6g/5mm8sTnnkKAcMGD3C7Yyj+eSqFYpKCgjwfYO
IbCaQaLOAR+mtmiRRSlLDMnSJS5v4RnFR6HhqQCIj5Ym6kSRDk8+vpGLb7SsKV03
o618NZZrzAgS6+jQrBfoP5cHVqLZlwr4lz7+f572c7aS+Y0smItFKz1gdM5YH2z0
vabXeyHx76jnmu0NmuatGyQ/uveycOzXbVrjc5Hr0c2KK29iuq2x14L+zUlwbDbd
xC/m0X6y8EudWsEOJl/BioqgJpA+caYXtcDalduOYVVEBtYzCvAZv4myntcAMp8=
=EAMK
-----END PGP SIGNATURE-----



More information about the security-announce mailing list