oss-sec mailing list archives
Re: CVE Request: xen DoS
From: Eugene Teo <eugene () redhat com>
Date: Thu, 17 Mar 2011 19:07:59 +0800
On 03/17/2011 03:09 PM, Ludwig Nussel wrote:
Hi, http://xenbits.xen.org/hg/staging/xen-unstable.hg/rev/c79aae866ad8 Citing https://bugzilla.novell.com/show_bug.cgi?id=679344: "The problem is that a 64-bit guest can get one of its vcpus into non-kernel mode without first providing a valid non-kernel pagetable. The iret-into-userspace path has the right checks, but just setting the context on a fresh vcpu doesn't. :( The observed failure mode is usually a hard lockup of the host."
Please use CVE-2011-1166. Eugene -- main(i) { putchar(182623909 >> (i-1) * 5&31|!!(i<7)<<6) && main(++i); }
Current thread:
- CVE Request: xen DoS Ludwig Nussel (Mar 17)
- Re: CVE Request: xen DoS Eugene Teo (Mar 17)