projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 46a49b9) | patch
x86/emulate: check cpl for all privileged instructions
authorAndrew Cooper <andrew.cooper3@citrix.com>
Tue, 23 Sep 2014 12:33:06 +0000 (14:33 +0200)
committerJan Beulich <jbeulich@suse.com>
Tue, 23 Sep 2014 12:33:06 +0000 (14:33 +0200)
commit0e442727ceccfa32a7276cccd205b4722e68fdc1
tree8c4d562c7f2337b87afcac5ba6452a8b90b2e6ectree | snapshot
parent46a49b91f1026f64430b84dd83e845a33f06415ecommit | diff
x86/emulate: check cpl for all privileged instructions

Without this, it is possible for userspace to load its own IDT or GDT.

This is XSA-105.

Reported-by: Andrei LUTAS <vlutas@bitdefender.com>
Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Tested-by: Andrei LUTAS <vlutas@bitdefender.com>
Reviewed-by: Jan Beulich <jbeulich@suse.com>
xen/arch/x86/x86_emulate/x86_emulate.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.