Re: [Xen-devel] [PATCH] Fix CVE-2007-1320, CVE-2007-1321 , CVE-2007-1322, CVE-2007-1323 and CVE-2007-1366

[Keir Fraser <keir@xxxxxxxxxxxxx>]

On 1/5/07 14:29, "S.ÃaÄlar Onur" <caglar@xxxxxxxxxxxxx> wrote:

> If anybody interested, attached patch (against 3.0.4) fixes CVE-2007-1320,
> CVE-2007-1321 , CVE-2007-1322, CVE-2007-1323 and CVE-2007-1366 which affects
> qemu and also seems valid for xen.

Is the patch from upstream qemu? We have our own patches to fix these issues
in 3.0.5-rc, but we'd consider an alternative that keeps us closer to
upstream qemu (albeit a later qemu than we build against).

 -- Keir


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel