[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2011-1763 kernel: xen: improper upper boundary check in get_free_port()
From:       Eugene Teo <eugene () redhat ! com>
Date:       2011-05-31 7:53:25
Message-ID: 4DE49E75.60007 () redhat ! com
[Download RAW message or body]

A flaw was found in the way Xen hypervisor checked for upper boundary
when getting a new event channel port. A privileged DomU user could use
this flaws to cause denial of service or, possibly, increase his privileges.

AFAIK, upstream xen is not affected.

https://bugzilla.redhat.com/CVE-2011-1763

fix: xen-unstable c/s 19365:
http://xenbits.xensource.com/hg/xen-unstable.hg/rev/2dcdd2fcb945

Thanks, Eugene
[prev in list] [next in list] [prev in thread] [next in thread]