Linux kernel built with the Kernel-based Virtual Machine (CONFIG_KVM) support is vulnerable to a null pointer dereference flaw. It could occur on x86 platform, when emulating an undefined instruction. A user/process could use this flaw to crash the host kernel resulting in DoS. Upstream patch: --------------- -> https://git.kernel.org/linus/d9092f52d7e61dd1557f2db2400ddb430e85937e Reference: ---------- -> http://www.openwall.com/lists/oss-security/2016/11/22/3
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1393358]
Statement: This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2. This issue affects the version of Linux kernel as shipped with Red Hat Enterprise Linux 7. Future kernel updates for Red Hat Enterprise Linux 7 may address this issue.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:0386 https://rhn.redhat.com/errata/RHSA-2017-0386.html
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:0387 https://rhn.redhat.com/errata/RHSA-2017-0387.html