[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-API] Backport request "libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] Security issue in "xl vcpu-set")

To: Ian Campbell <ian.campbell@xxxxxxxxxx>
From: Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>
Date: Thu, 11 Jun 2015 12:00:46 +0100
Cc: stefano.stabellini@xxxxxxxxxxxxx, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, xen-devel <xen-devel@xxxxxxxxxxxxx>, security@xxxxxxxxxxxxxx, "lwcheng@xxxxxxxxx" <lwcheng@xxxxxxxxx>, Luwei Cheng <chengluwei@xxxxxxxxx>, xen-api@xxxxxxxxxxxxx
Delivery-date: Thu, 11 Jun 2015 11:10:35 +0000
List-id: User and development list for XCP and XAPI <xen-api.lists.xen.org>

Ian Campbell writes ("Re: Backport request "libxl: In libxl_set_vcpuonline 
check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] 
Security issue in "xl vcpu-set")"):
> On Mon, 2015-06-08 at 11:35 +0100, Ian Jackson wrote:
> > I'm afraid I'm still not clear about when the failure can be triggered
> > by an attacker.
> 
> I was able to reproduce by pressing a key at a pygrub prompt to drop to
> a prompt and then leaving the guest in that state, where the domain
> exists but does not yet have any vcpus etc.

OK, then the fix should be backported.

The next question is whether there should be an advisory.

Ian.

_______________________________________________
Xen-api mailing list
Xen-api@xxxxxxxxxxxxx
http://lists.xen.org/cgi-bin/mailman/listinfo/xen-api

References:
- Re: [Xen-API] [Bug report] Security issue in "xl vcpu-set"
  - From: lwcheng
- Re: [Xen-API] [Bug report] Security issue in "xl vcpu-set"
  - From: Ian Campbell
- [Xen-API] Backport request "libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] Security issue in "xl vcpu-set")
  - From: Ian Campbell
- Re: [Xen-API] Backport request "libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] Security issue in "xl vcpu-set")
  - From: Luwei Cheng
- Re: [Xen-API] Backport request "libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] Security issue in "xl vcpu-set")
  - From: Ian Jackson
- Re: [Xen-API] Backport request "libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] Security issue in "xl vcpu-set")
  - From: Ian Campbell

Prev by Date: Re: [Xen-API] [Xen-users] Dose noVNC break qemu-dm in XenServer6.2?
Next by Date: Re: [Xen-API] Building for cubieboard4 with vanilla linux/linaro
Previous by thread: Re: [Xen-API] Backport request "libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] Security issue in "xl vcpu-set")
Next by thread: [Xen-API] Backport request "libxl: In libxl_set_vcpuonline check for maximum number of VCPUs against the cpumap." (Was: Re: [Bug report] Security issue in "xl vcpu-set")
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.