Re: [Qemu-devel] [PATCH][XSA-126] xen: limit guest control of PCI comman

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH][XSA-126] xen: limit guest control of PCI comman

From:	Peter Maydell
Subject:	Re: [Qemu-devel] [PATCH][XSA-126] xen: limit guest control of PCI command register
Date:	Thu, 9 Apr 2015 19:10:53 +0100

On 31 March 2015 at 15:18, Stefano Stabellini
<address@hidden> wrote:
> From: Jan Beulich <address@hidden>
>
> Otherwise the guest can abuse that control to cause e.g. PCIe
> Unsupported Request responses (by disabling memory and/or I/O decoding
> and subsequently causing [CPU side] accesses to the respective address
> ranges), which (depending on system configuration) may be fatal to the
> host.
>
> This is CVE-2015-2756 / XSA-126.
>
> Signed-off-by: Jan Beulich <address@hidden>
> Reviewed-by: Stefano Stabellini <address@hidden>
> Acked-by: Ian Campbell <address@hidden>

Oops, this one got lost. I'm going to commit it to qemu master tomorrow
(so it will go in -rc3), unless there are objections (I can't
really tell from the thread what the conclusion of the discussion
was).

-- PMM

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Qemu-devel] [PATCH][XSA-126] xen: limit guest control of PCI command register, Peter Maydell <=
- Re: [Qemu-devel] [PATCH][XSA-126] xen: limit guest control of PCI command register, Peter Maydell, 2015/04/10
  - Re: [Qemu-devel] [PATCH][XSA-126] xen: limit guest control of PCI command register, Peter Maydell, 2015/04/10

Prev by Date: Re: [Qemu-devel] 64-bit build of qemu-system-arm with mingw-w64 not functional
Next by Date: Re: [Qemu-devel] [PATCH] Fix crash with illegal "-net nic, model=xxx" option
Previous by thread: [Qemu-devel] [PATCH] translate-all: use g_malloc0 for all page descriptor allocations
Next by thread: Re: [Qemu-devel] [PATCH][XSA-126] xen: limit guest control of PCI command register
Index(es):
- Date
- Thread