[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-API] [XCP] CVE-2012-0217 - PV privilege escalation and XCP 1.1

To: "xen-api@xxxxxxxxxxxxxxxxxxx" <xen-api@xxxxxxxxxxxxxxxxxxx>
From: George Shuklin <george.shuklin@xxxxxxxxx>
Date: Wed, 13 Jun 2012 20:06:53 +0400
Delivery-date: Wed, 13 Jun 2012 16:07:15 +0000
List-id: User and development list for XCP and XAPI <xen-api.lists.xen.org>

Good day.

Few days ago very serious issue has been published, allowing 64-bitPV-guest gain control over dom0. AFAIK this is fully affect XCP 1.1

Here more datahttp://permalink.gmane.org/gmane.comp.security.oss.general/7851


I found that http://support.citrix.com/article/CTX133176 is fixing that.

Now, I have few questions:

1) Can I use xen and kernel rpms from that update to install them in XCPinstallation?2) What is legal status of that operation? Can I just install xen andlinux from XenServer to XCP? (I'm not talking about StrageLink or someclosed components, only xen and linux)

3) May I freely publish extracted rpms (this is very non-trivial operation)?

Thanks.

_______________________________________________
Xen-api mailing list
Xen-api@xxxxxxxxxxxxx
http://lists.xen.org/cgi-bin/mailman/listinfo/xen-api

Follow-Ups:
- Re: [Xen-API] [XCP] CVE-2012-0217 - PV privilege escalation and XCP 1.1
  - From: Mike McClurg
- Re: [Xen-API] [XCP] CVE-2012-0217 - PV privilege escalation and XCP 1.1 [FIX]
  - From: George Shuklin
- Re: [Xen-API] [XCP] CVE-2012-0217 - PV privilege escalation and XCP 1.1
  - From: Carlos Eduardo Tavares Terra

Prev by Date: Re: [Xen-API] [Xen-users] Xen or XCP
Next by Date: Re: [Xen-API] [Xen-users] Xen or XCP
Previous by thread: Re: [Xen-API] [Xen-users] Xen or XCP
Next by thread: Re: [Xen-API] [XCP] CVE-2012-0217 - PV privilege escalation and XCP 1.1
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.