[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2010-4238 xen dom0 issue
From:       Eugene Teo <eugene () redhat ! com>
Date:       2011-01-25 22:46:34
Message-ID: 4D3F52CA.8070204 () redhat ! com
[Download RAW message or body]

A missing sanity check was found in vbd_create() in the Xen hypervisor
implementation. As CD-ROM drives are not supported by the blkback 
back-end driver, attempting to use a virtual CD-ROM drive with blkback 
could trigger a denial of service (crash) on the host system running the 
Xen hypervisor.

https://bugzilla.redhat.com/CVE-2010-4238

This affects Red Hat Enterprise Linux 5 only. There's no upstream patch.

https://bugzilla.redhat.com/CVE-2010-4238

Eugene
[prev in list] [next in list] [prev in thread] [next in thread]