oss-sec mailing list archives
Re: xen/blkback: Check device permissions before allowing OP_DISCARD
From: Kurt Seifried <kseifried () redhat com>
Date: Wed, 05 Jun 2013 13:14:28 -0600
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/05/2013 11:46 AM, Konrad Rzeszutek Wilk wrote:
Hey, John Haxby and Dan Carpenter recommended I ask for an CVE number here. The bug is that if a system admin provides a disk (which supports the discard aka TRIM or SCSI UNMAP) to a guest as read-only - there are no checks done. Which means that the OS can destroy the data. The likehood of somebody using 'ro' disks I think is small - but there is probably one person who does it and would be unhappy that a guest OS can destroy the underlaying data. I have a patch (and a test-case) ready (see attached). I think I just need an CVE number and need to send the mentioned patch to Linus?
Please use CVE-2013-2140 for this issue. - -- Kurt Seifried Red Hat Security Response Team (SRT) PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux) iQIcBAEBAgAGBQJRr44UAAoJEBYNRVNeJnmTYhUQAMndCp3wbt65oG/kPDRPIcgz tOAzJTw99IIQ/n/n+Wxui5c/Rq/RhShahDgsFKXx/PcBw0oZcBQPAwo3j6XqK8Ea ocXT2BW/IbBOJLEi/A/4lFQtNBMB4CLC02OVaYjRxUqvnGoWFCVGUIBr4S18jMEA Aqx3fzbPqvL7W0FGNqdpFGaqO4bvZfMTHep9TM4LDRhkLFEntQIFzZ6wCk1CD+iP sNRTbbOxDl7Pi5ex+jhSUcaudRUGpXb3hr6An6N9llHDuSkQpE9fVKYR8nRYvsyJ pBrk1piiWKHmQDV+8pxKl4OKjZUpClAu6HLOQ7THzybLIXCdZMbBxIcDzD0zyjpD g+CblUAwMX3VhaxNRhOXQF3JzViR9fbv6+Etf0TG/iKLfwOMnXoBkz8bbm+rPc79 cnFSEHmFZqVIpnMYDVXTe2hmHGf7T65ZFNM658EZA+ttchiG+70xPqq2W6/XuiGM Gvqy8MmO2Ufv6/DnL6WtXsLjQFE0nhZzcyGZg3dIjS8tr7o0iQrRITCPaCjGwlL2 cqXl9rPuJOBiojtdM3klF8Trk8d7jD12nmvqYZN/1YBP/s2d3q/G+rRMotPYGpOt HnKmS/0eTnw0D8pdZz6JAVbljViNY3wgpr9NnpNt2ooKhuJ0awpAu6tN4BagXVda OtVZADzDl5AkeGZIC0+v =Rnva -----END PGP SIGNATURE-----
Current thread:
- xen/blkback: Check device permissions before allowing OP_DISCARD Konrad Rzeszutek Wilk (Jun 05)
- Re: xen/blkback: Check device permissions before allowing OP_DISCARD Kurt Seifried (Jun 05)