[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request: kernel: KVM: x86 emulator: limit
From: Josh Bressers <bressers () redhat ! com>
Date: 2009-11-25 16:59:32
Message-ID: 1084415133.30031259168372226.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]
Please use CVE-2009-4031 for this.
Thanks
--
JB
----- "Eugene Teo" <eugeneteo@kernel.sg> wrote:
> Quoting from the patch: "While we are never normally passed an
> instruction that exceeds 15 bytes, smp games can cause us to attempt
> to
> interpret one, which will cause large latencies in non-preempt
> hosts."
>
> http://git.kernel.org/?p=linux/kernel/git/avi/kvm.git;a=commitdiff;h=e42d9b8141d1f54ff72ad3850bb110c95a5f3b88
> https://bugzilla.redhat.com/show_bug.cgi?id=541160
>
> I understand that a malicious guest can cause long scheduling
> latencies
> in the host, resulting in a denial of service, but I have not
> investigated this further to determine if it has more severe
> consequences.
>
> Thanks, Eugene
> --
> Eugene Teo / Red Hat Security Response Team
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic