Linux kernel built with the Kernel-based Virtual Machine(CONFIG_KVM) support is vulnerable to an information leakage issue. It could occur on x86 platform, while emulating instructions in 32bit mode. A user/process could use this flaw to leak host kernel memory bytes. Upstream patch: --------------- -> https://git.kernel.org/linus/2117d5398c81554fbf803f5fd1dc55eb78216c0c Reference: ---------- -> http://www.openwall.com/lists/oss-security/2016/12/01/1
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1400469]
Statement: This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2. This issue affects the version of Linux kernel as shipped with Red Hat Enterprise Linux 7. This has been rated as having Low security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: -> https://access.redhat.com/support/policy/updates/errata/