oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request: xen DoS

From: Eugene Teo <eugene () redhat com>
Date: Thu, 17 Mar 2011 19:07:59 +0800
On 03/17/2011 03:09 PM, Ludwig Nussel wrote:

Hi,

http://xenbits.xen.org/hg/staging/xen-unstable.hg/rev/c79aae866ad8

Citing https://bugzilla.novell.com/show_bug.cgi?id=679344:
"The problem is that a 64-bit guest can get one of its vcpus into
non-kernel mode without first providing a valid non-kernel pagetable.
The iret-into-userspace path has the right checks, but just setting the
context on a fresh vcpu doesn't. :(  The observed failure mode is
usually a hard lockup of the host."


Please use CVE-2011-1166.

Eugene
--
main(i) { putchar(182623909 >> (i-1) * 5&31|!!(i<7)<<6) && main(++i); }
Previous By Date Next
Previous By Thread Next

Current thread: