oss-sec mailing list archives
CVE-2011-1763 kernel: xen: improper upper boundary check in get_free_port() function
From: Eugene Teo <eugene () redhat com>
Date: Tue, 31 May 2011 15:53:25 +0800
A flaw was found in the way Xen hypervisor checked for upper boundary when getting a new event channel port. A privileged DomU user could use this flaws to cause denial of service or, possibly, increase his privileges. AFAIK, upstream xen is not affected. https://bugzilla.redhat.com/CVE-2011-1763 fix: xen-unstable c/s 19365: http://xenbits.xensource.com/hg/xen-unstable.hg/rev/2dcdd2fcb945 Thanks, Eugene
Current thread:
- CVE-2011-1763 kernel: xen: improper upper boundary check in get_free_port() function Eugene Teo (May 31)