[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-ia64-devel] [PATCH]: huge security hole

To: xen-ia64-devel@xxxxxxxxxxxxxxxxxxx, "Magenheimer, Dan (HP Labs Fort Collins)" <dan.magenheimer@xxxxxx>, Alex Williamson <alex.williamson@xxxxxx>
From: Tristan Gingold <Tristan.Gingold@xxxxxxxx>
Date: Mon, 20 Mar 2006 10:12:44 +0100
Delivery-date: Mon, 20 Mar 2006 09:09:50 +0000
List-id: Discussion of the ia64 port of Xen <xen-ia64-devel.lists.xensource.com>

Hi,

Check privilege level before pal/sal/efi calls.
Previously a user in dom0 was able to reboot the machine!

Note: there are still many security holes to fix!

Tested by boot+shutdown of dom0+domU, run of postat and regression.

Tristan.

Attachment: xen-security1.diffs
Description: Text Data

_______________________________________________
Xen-ia64-devel mailing list
Xen-ia64-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-ia64-devel

Follow-Ups:
- [Xen-ia64-devel] Re: [PATCH]: huge security hole
  - From: Alex Williamson

Prev by Date: [Xen-ia64-devel] [RFC] The "vcpu->arch.privregs" is doubly used
Next by Date: Re: [Xen-ia64-devel] [RFC] The "vcpu->arch.privregs" is doubly used
Previous by thread: [Xen-ia64-devel] [RFC] The "vcpu->arch.privregs" is doubly used
Next by thread: [Xen-ia64-devel] Re: [PATCH]: huge security hole
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.