[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] DRAFT XSA 142 - libxl fails to honour readonly flag on disks with qemu-xen



Ian Campbell writes ("Re: DRAFT XSA 142 - libxl fails to honour readonly flag 
on disks with qemu-xen"):
> On Tue, 2015-09-15 at 16:22 +0000, Xen.org security team wrote:
> > VULNERABLE SYSTEMS
> > ==================
> > 
> [...]
> > Only systems using libxl or libxl-based toolstacks are vulnerable.
> > (This includes libvirt with the libxl driver.)
> 
>                 ^xl and ... ?

Good idea, done.

> > All versions of libxl which support qemu-xen are vulnerable.  Support
> > for qemu-xen was introduced in Xen 4.1.
> 
> http://wiki.xenproject.org/wiki/Xen_Project_Release_Features says 4.2 as
> preview and 4.3 properly. Which is wrong?

staging-4.1 contains `libxl_build_device_model_args_new' But maybe the
feature wasn't advertised.  I have reworded. to say `the affected code
was introduced in Xen 4.1'.

Last Call draft just sent.

Ian.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel


 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.