Linux kernel built with Bluetooth networking support is vulnerable to information leakage flaws. These occur while calling getsockname, and getsockopt(HCI_FILTER) routines. A user/program could use this flaw to leak kernel memory bytes. Upstream fix: ------------- -> https://git.kernel.org/linus/792039c73cf176c8e39a6e8beef2c94ff46522ed -> https://git.kernel.org/linus/3f68ba07b1da811bf383b4b701b129bfcb2e4988 -> https://git.kernel.org/linus/e15ca9a0ef9a86f0477530b0f44a725d67f889ee Reference: ---------- -> http://www.openwall.com/lists/oss-security/2013/03/14/21
Statement: This issue does not affect the version of the kernel package as shipped with Red Hat Enterprise MRG 2.
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2013:1034 https://rhn.redhat.com/errata/RHSA-2013-1034.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:1173 https://rhn.redhat.com/errata/RHSA-2013-1173.html
This issue has been addressed in following products: OpenStack 3 for RHEL 6 Via RHSA-2013:1195 https://rhn.redhat.com/errata/RHSA-2013-1195.html