MGASA-2014-0475

Description

Updated kernel packages fix security vulnerabilities This kernel update is based on upstream -longterm 3.10.60 and fixes the following security issues: The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non- canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c (CVE-2014-3610). Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS crash) by leveraging incorrect PIT emulation (CVE-2014-3611). arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application (CVE-2014-3647). For other upstream changes, read the referenced changelogs.

Affected Systems

• mageia•kernel

  < 3.10.60-1.mga3

• mageia•kernel-userspace-headers

  < 3.10.60-1.mga3

• mageia•kmod-broadcom-wl

  < 6.30.223.141-25.mga3.nonfree

• mageia•kmod-fglrx

  < 13.251-15.mga3.nonfree

• mageia•kmod-nvidia-current

  < 319.60-25.mga3.nonfree

• mageia•kmod-nvidia173

  < 173.14.38-39.mga3.nonfree

• mageia•kmod-nvidia304

  < 304.108-25.mga3.nonfree

• mageia•kmod-vboxadditions

  < 4.3.18-3.mga3

• mageia•kmod-virtualbox

  < 4.3.18-3.mga3

• mageia•kmod-xtables-addons

  < 2.3-25.mga3

References (4)

• https://advisories.mageia.org/MGASA-2014-0475.html
• https://bugs.mageia.org/show_bug.cgi?id=14571
• https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.59
• https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.60