projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 529d573) | patch
xen: Do not allow guests to enable nested HVM on themselves
authorIan Campbell <ian.campbell@citrix.com>
Wed, 23 Jan 2013 10:47:24 +0000 (11:47 +0100)
committerIan Campbell <ian.campbell@citrix.com>
Wed, 23 Jan 2013 10:47:24 +0000 (11:47 +0100)
commit3fc87c0c65f83cc613726b2c33942a19715f4289
tree98e71591b9f3c3ac7af60e26e939e4d5d7f74413tree | snapshot
parent529d5731e40e179e396397c633e10316a850044ecommit | diff
xen: Do not allow guests to enable nested HVM on themselves

There is no reason for this and doing so exposes a memory leak to
guests. Only toolstacks need write access to this HVM param.

This is XSA-35 / CVE-2013-0152.

Signed-off-by: Ian Campbell <ian.campbell@citrix.com>
Acked-by: Jan Beulich <JBeulich@suse.com>
Committed-by: Jan Beulich <jbeulich@suse.com>
xen/arch/x86/hvm/hvm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.