Rapid7 Vulnerability & Exploit Database

RHSA-2010:0271: kvm security, bug fix and enhancement update

Back to Search

RHSA-2010:0271: kvm security, bug fix and enhancement update

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
04/12/2010
Created
07/25/2018
Added
04/12/2010
Modified
07/04/2017

Description

KVM (Kernel-based Virtual Machine) is a full virtualization solution forLinux on AMD64 and Intel 64 systems. KVM is a Linux kernel module built forthe standard Red Hat Enterprise Linux kernel.A flaw was found in the way QEMU-KVM handled erroneous data provided bythe Linux virtio-net driver, used by guest operating systems. Due to adeficiency in the TSO (TCP segment offloading) implementation, a guest'svirtio-net driver would transmit improper data to a certain QEMU-KVMprocess on the host, causing the guest to crash. A remote attacker coulduse this flaw to send specially-crafted data to a target guest system,causing that guest to crash. (CVE-2010-0741)Additionally, these updated packages include numerous bug fixes andenhancements. Refer to the KVM chapter of the Red Hat Enterprise Linux 5.5Technical Notes for details:http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.5/html/Technical_Notes/kvm.htmlAll KVM users should upgrade to these updated packages, which resolve thisissue as well as fixing the bugs and adding the enhancements noted in theTechnical Notes. Note: The procedure in the Solution section must beperformed before this update will take effect.

Solution(s)

  • redhat-upgrade-kmod-kvm
  • redhat-upgrade-kvm
  • redhat-upgrade-kvm-qemu-img
  • redhat-upgrade-kvm-tools

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;