[Top] [All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] [Xen-devel] Xen Security Advisory 35 (CVE-2013-0152) - Nested HVM exposes host to being driven out of memory by guest

To: "Xen.org security team" <security@xxxxxxx>
From: M A Young <m.a.young@xxxxxxxxxxxx>
Date: Tue, 22 Jan 2013 21:09:29 +0000 (GMT)
Cc: xen-users@xxxxxxxxxxxxx, xen-announce@xxxxxxxxxxxxx, oss-security@xxxxxxxxxxxxxxxxxx, xen-devel@xxxxxxxxxxxxx
Delivery-date: Tue, 22 Jan 2013 21:11:23 +0000
List-id: Xen user discussion <xen-users.lists.xen.org>

On Tue, 22 Jan 2013, Xen.org security team wrote:

To fix both XSA 34 and XSA 35, first apply xsa34-4.2.patch from XSA 34
and then *also* apply xsa35-4.2-with-xsa34.patch from this advisory.


The xsa35-4.2-with-xsa34.patch patch is malformed,
@@ -3862,6 +3862,10 @@ long do_hvm_op(unsigned long op, XEN_GUE
should be
@@ -3862,6 +3862,11 @@ long do_hvm_op(unsigned long op, XEN_GUE

        Michael Young

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxx
http://lists.xen.org/xen-users

References:
- [Xen-users] Xen Security Advisory 35 (CVE-2013-0152) - Nested HVM exposes host to being driven out of memory by guest
  - From: Xen . org security team

Prev by Date: Re: [Xen-users] iscsi on xen
Next by Date: Re: [Xen-users] iscsi on xen
Previous by thread: [Xen-users] Xen Security Advisory 35 (CVE-2013-0152) - Nested HVM exposes host to being driven out of memory by guest
Next by thread: [Xen-users] Xen Security Advisory 35 (CVE-2013-0152) - Nested HVM exposes host to being driven out of memory by guest
Index(es):
- Date
- Thread

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.