Red Hat Bugzilla – Bug 949567
CVE-2013-1928 Kernel: information leak in fs/compat_ioctl.c VIDEO_SET_SPU_PALETTE
Last modified: 2015-07-31 03:03:24 EDT
Linux kernel built with Digital Video Broadcasting(CONFIG_DVB) support are
vulnerable to an information leak issue. The leak could occurs via an
ioctl(VIDEO_SET_SPU_PALETTE) call on a device file under - /dev/dvb/ - tree.
This issue does not affect the versions of the kernel package as shipped with
Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG 2.
This issue affects the version of Linux kernel as shipped with
Red Hat Enterprise Linux 6. Future kernel updates for Red Hat Enterprise Linux 6
may address this issue.
This issue has been addressed in following products:
Red Hat Enterprise Linux 6
Via RHSA-2013:1645 https://rhn.redhat.com/errata/RHSA-2013-1645.html