|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-devel] Xen 3.4.x Backports
On 28/02/2012 23:47, Fajar A. Nugraha wrote: On Wed, Feb 29, 2012 at 6:36 AM, Jonathan Tripathy<jonnyt@xxxxxxxxxxx> wrote:CVE-2011-1166 https://bugzilla.redhat.com/show_bug.cgi?id=688579 http://xenbits.xen.org/hg/staging/xen-unstable.hg/rev/c79aae866ad8 Again, this doesn't appear to be backported to 3.4.x, however I note that Red Hat claim to have fixed this in their kernel version. This is where I get confused again. How can a hypervisor issue be fixed in the kernel??Redhat bundles the hypervisor (xen.gz) as part of their kernel-xen rpm, while xen rpm only contains the userland part. So if you have three different versions of kernel-xen rpm installed, you'd have three versions of hypervisors. Interesting!What we currently do is use CentOS's kernel-xen purely for the Linux Kernel, however we use the xen.gz (3.4.x) image from GitCo. Is this bad? It's been a very stable combination for us. I take it this means, for my security concerns, that I have to rely on what has been backported to the 3.4.x branch in xenbits, as I'm not using Red Hat's backports? Sorry that I'm a bit confused here _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxx http://lists.xen.org/xen-devel
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |