[prev in list] [next in list] [prev in thread] [next in thread] 

List:       qubes-devel
Subject:    Re: [qubes-devel] Qubes Security Bulletin #22 (Critical bug)
From:       Marek =?utf-8?Q?Marczykowski-G=C3=B3recki?= <marmarek () invisiblethingslab ! com>
Date:       2015-10-29 15:00:32
Message-ID: 20151029150032.GP877 () mail-itl
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On Thu, Oct 29, 2015 at 03:46:13PM +0100, sowowsuchmailvery@onenetbeyond.org wrote:
> 
> Hello,
> 
> In my understanding, not even a grsec/pax kernel would have stopped
> this. For example Alpine Linux as dom0. Is it correct?

Yes, any protection applied by dom0 is useless here, as the
vulnerability allows direct escalation from any PV VM to complete system
control.

- -- 
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBCAAGBQJWMjSPAAoJENuP0xzK19cs3jIIAIfAlr+gPoKWbmgg4x5EMZYR
Flvt211D5KdQtDGhtlBB2iCHesGiwi7VkC5itkoTh9/n2+t4wrpDHFDfwm51+cEb
TxM/YMutoMHlYlD77YMLj84BmqCUBERua2zAh7m8vmn5vEXpWNe5IF2bZugVSh+7
G5Fyi/69apGHjBGy/zvwmhDKqL+TPcFnUOZ/37O4LPHeEtE8ap4+gdednXFYxfzL
lDp4DDKqLv+gnfPmN+vrhV3tCxxcQhQkTtvWOsM4orRjXubXkYGQDXuGBSh6Aj0S
dWFQrL2ZT7myBxyf1QIXHL9kTTLz/vnicA8p10pow/M0UCg/+Q710NXV5mw0CmM=
=rRZb
-----END PGP SIGNATURE-----

-- 
You received this message because you are subscribed to the Google Groups \
"qubes-devel" group. To unsubscribe from this group and stop receiving emails from \
it, send an email to qubes-devel+unsubscribe@googlegroups.com. To post to this group, \
send email to qubes-devel@googlegroups.com. To view this discussion on the web visit \
https://groups.google.com/d/msgid/qubes-devel/20151029150032.GP877%40mail-itl. For \
more options, visit https://groups.google.com/d/optout.


[prev in list] [next in list] [prev in thread] [next in thread]