Updated kernel packages fix security vulnerabilities
Publication date: 21 Nov 2014Modification date: 21 Nov 2014
Type: security
Affected Mageia releases : 3
CVE: CVE-2014-3610 , CVE-2014-3611 , CVE-2014-3647
Description
This kernel update is based on upstream -longterm 3.10.60 and fixes the following security issues: The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non- canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c (CVE-2014-3610). Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS crash) by leveraging incorrect PIT emulation (CVE-2014-3611). arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application (CVE-2014-3647). For other upstream changes, read the referenced changelogs.
References
- https://bugs.mageia.org/show_bug.cgi?id=14571
- https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.59
- https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.60
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3610
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3611
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3647
SRPMS
3/core
- kernel-3.10.60-1.mga3
- kernel-userspace-headers-3.10.60-1.mga3
- kmod-vboxadditions-4.3.18-3.mga3
- kmod-virtualbox-4.3.18-3.mga3
- kmod-xtables-addons-2.3-25.mga3
3/nonfree
- kmod-broadcom-wl-6.30.223.141-25.mga3.nonfree
- kmod-fglrx-13.251-15.mga3.nonfree
- kmod-nvidia173-173.14.38-39.mga3.nonfree
- kmod-nvidia304-304.108-25.mga3.nonfree
- kmod-nvidia-current-319.60-25.mga3.nonfree