Linux kernel built with Digital Video Broadcasting(CONFIG_DVB) support are vulnerable to an information leak issue. The leak could occurs via an ioctl(VIDEO_SET_SPU_PALETTE) call on a device file under - /dev/dvb/ - tree. Upstream fix: ------------- -> https://git.kernel.org/linus/12176503366885edd542389eed3aaf94be163fdb Reference: ---------- -> http://www.openwall.com/lists/oss-security/2013/04/05/3
Statement: This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise Linux 5 and Red Hat Enterprise MRG 2. This issue affects the version of Linux kernel as shipped with Red Hat Enterprise Linux 6. Future kernel updates for Red Hat Enterprise Linux 6 may address this issue.
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:1645 https://rhn.redhat.com/errata/RHSA-2013-1645.html