[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] RFC: Adding a section to the Xen security policy about what constitutes a vulnerability

To: George Dunlap <george.dunlap@xxxxxxxxxx>
From: Ian Jackson <ian.jackson@xxxxxxxxxxxxx>
Date: Fri, 20 Jan 2017 19:07:40 +0000
Cc: "xen-devel@xxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxx>
Delivery-date: Fri, 20 Jan 2017 19:08:26 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

George Dunlap writes ("[Xen-devel] RFC: Adding a section to the Xen security 
policy about what constitutes a vulnerability"):
> If a bug requires a vulnerable operating system to be exploitable, the
> Xen Security Team will pro-actively investigate the vulnerability of
> the following open-source operating systems: Linux, OpenBSD, FreeBSD,
> and NetBSD.  The security team may also test or otherwise investigate
> the vulnerability of some proprietary operating systems.

I like this whole document.

+1

I think the paragraph I quote above is the most difficult but it
strikes the right balance between what we can promise and what we
would like to deliver.

Ian.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
https://lists.xen.org/xen-devel

References:
- [Xen-devel] RFC: Adding a section to the Xen security policy about what constitutes a vulnerability
  - From: George Dunlap

Prev by Date: Re: [Xen-devel] [PATCH v12 05/10] x86: add multiboot2 protocol support for EFI platforms
Next by Date: Re: [Xen-devel] [PATCH v5 3/9] xen/x86: split Dom0 build into PV and PVHv2
Previous by thread: Re: [Xen-devel] RFC: Adding a section to the Xen security policy about what constitutes a vulnerability
Next by thread: [Xen-devel] [PATCH 00/27] xen/x86: Per-domain CPUID policies
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.