[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] has CVE-2010-3081 been patched in the xen.org kernels?

To: deshantm@xxxxxxxxx
From: Luke S Crawford <lsc@xxxxxxxxx>
Date: 28 Sep 2010 13:44:17 -0400
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Tue, 28 Sep 2010 10:45:52 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>

Todd Deshane <deshantm@xxxxxxxxx> writes:

> On Tue, Sep 28, 2010 at 9:00 AM, Luke S Crawford <lsc@xxxxxxxxx> wrote:
> >
> >
> > there's lots of talk of the Ac1db1tch3z exploit. Â has this been pached
> > in the xen.org dom0 kernels? Âthe xcp kernels? Â I've been using the
> > /proc/sys/fs/binfmt_misc/register Âworkaround but it'd be better to properly
> > upgrade everything.
> >
> 
> A recent root exploit is mentioned here:
> http://xen.markmail.org/search/?q=%22xen+and+dom0+kernel+builds%22#query:%22xen%20and%20dom0%20kernel%20builds%22+page:1+mid:5tx6app7okp67cdi+state:results


That's the exploit I'm talking about, but that message is about myoung's 
fc12 build... as far as I can read it doesn't mention the 2.6.32.x pvops
kernel or the 2.6.18.8-xen hg tree.  

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

References:
- [Xen-users] has CVE-2010-3081 been patched in the xen.org kernels?
  - From: Luke S Crawford
- Re: [Xen-users] has CVE-2010-3081 been patched in the xen.org kernels?
  - From: Todd Deshane

Prev by Date: Re: [Xen-users] PV domU loses connectivity on xen 4
Next by Date: Re: [Xen-users] PV domU loses connectivity on xen 4
Previous by thread: Re: [Xen-users] has CVE-2010-3081 been patched in the xen.org kernels?
Next by thread: Re: [Xen-users] has CVE-2010-3081 been patched in the xen.org kernels?
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.