|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Xen-changelog] [xen-3.1-testing] [IA64] Fix security vulnerability
# HG changeset patch
# User Keir Fraser <keir.fraser@xxxxxxxxxx>
# Date 1200664392 0
# Node ID aff7d16b583dbf4a6d17adc008996497d7353454
# Parent b17dfd182f7c4bda5417e39f5d1c9ee01273ec12
[IA64] Fix security vulnerability
DomU can map any other domain's memory.
Signed-off-by: Kouya Shimura <kouya@xxxxxxxxxxxxxx>
xen-unstable changeset: 16719:235bef53d5bd04b4ac3b0c443369fa09d5d99e48
xen-unstable date: Tue Jan 15 07:07:01 2008 -0700
---
xen/arch/ia64/xen/dom0_ops.c | 4 ++++
1 files changed, 4 insertions(+)
diff -r b17dfd182f7c -r aff7d16b583d xen/arch/ia64/xen/dom0_ops.c
--- a/xen/arch/ia64/xen/dom0_ops.c Thu Jan 17 15:05:38 2008 +0000
+++ b/xen/arch/ia64/xen/dom0_ops.c Fri Jan 18 13:53:12 2008 +0000
@@ -420,10 +420,14 @@ do_dom0vp_op(unsigned long cmd,
ret = dom0vp_zap_physmap(d, arg0, (unsigned int)arg1);
break;
case IA64_DOM0VP_add_physmap:
+ if (!IS_PRIV(d))
+ return -EPERM;
ret = dom0vp_add_physmap(d, arg0, arg1, (unsigned int)arg2,
(domid_t)arg3);
break;
case IA64_DOM0VP_add_physmap_with_gmfn:
+ if (!IS_PRIV(d))
+ return -EPERM;
ret = dom0vp_add_physmap_with_gmfn(d, arg0, arg1, (unsigned int)arg2,
(domid_t)arg3);
break;
_______________________________________________
Xen-changelog mailing list
Xen-changelog@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-changelog
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |