oss-sec mailing list archives
CVE-2010-4238 xen dom0 issue
From: Eugene Teo <eugene () redhat com>
Date: Wed, 26 Jan 2011 06:46:34 +0800
A missing sanity check was found in vbd_create() in the Xen hypervisorimplementation. As CD-ROM drives are not supported by the blkback back-end driver, attempting to use a virtual CD-ROM drive with blkback could trigger a denial of service (crash) on the host system running the Xen hypervisor.
https://bugzilla.redhat.com/CVE-2010-4238 This affects Red Hat Enterprise Linux 5 only. There's no upstream patch. https://bugzilla.redhat.com/CVE-2010-4238 Eugene
Current thread:
- CVE-2010-4238 xen dom0 issue Eugene Teo (Jan 25)