kernel is vulnerable to denial of service (DoS). The vulnerability exists through a missing sanity check was found in vbd_create() in the Xen hypervisor implementation. As CD-ROM drives are not supported by the blkback back-end driver, attempting to use a virtual CD-ROM drive with blkback could trigger a denial of service (crash) on the host system running the Xen hypervisor.
bugs.centos.org/bug_view_advanced_page.php?bug_id=4517
docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.6_Release_Notes/index.html
docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.6_Technical_Notes/kernel.html
secunia.com/advisories/42884
secunia.com/advisories/46397
www.redhat.com/support/errata/RHSA-2011-0017.html
www.securityfocus.com/archive/1/520102/100/0/threaded
www.securityfocus.com/bid/45795
www.vmware.com/security/advisories/VMSA-2011-0012.html
access.redhat.com/errata/RHSA-2011:0017
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=655623
exchange.xforce.ibmcloud.com/vulnerabilities/64698