[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 2/2] tools/xenstore: fix get_spec_node()

To: Juergen Gross <jgross@xxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Julien Grall <julien@xxxxxxx>
Date: Sat, 22 Jul 2023 16:25:20 +0100
Cc: Wei Liu <wl@xxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>
Delivery-date: Sat, 22 Jul 2023 15:25:35 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Hi Juergen,

On 22/07/2023 09:16, Juergen Gross wrote:

In case get_spec_node() is being called for a special node starting
with '@' it won't set *canonical_name. This can result in a crash of
xenstored due to dereferencing the uninitialized name in
fire_watches().

This is no security issue as it requires either a privileged caller or
ownership of the special node in question by an unprivileged caller
(which is questionable, as this would make the owner privileged in some
way).

Fixes: d6bb63924fc2 ("tools/xenstore: introduce dummy nodes for special watch 
paths")
Signed-off-by: Juergen Gross <jgross@xxxxxxxx>


Reviewed-by: Julien Grall <jgrall@xxxxxxxxxx>

Cheers,

--
Julien Grall

References:
- [PATCH v2 0/2] tools/xenstore: fix get_spec_node()
  - From: Juergen Gross
- [PATCH v2 2/2] tools/xenstore: fix get_spec_node()
  - From: Juergen Gross

Prev by Date: Re: [PATCH v2 1/2] tools/xenstore: add const to the return type of canonicalize()
Next by Date: Re: [PATCH v2 1/2] tools/xenstore: add const to the return type of canonicalize()
Previous by thread: [PATCH v2 2/2] tools/xenstore: fix get_spec_node()
Next by thread: Re: [PATCH v2 0/2] tools/xenstore: fix get_spec_node()
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.