projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 19f027c) | patch
x86/HVM: only allow ring 0 guest code to make hypercalls
authorJan Beulich <jbeulich@suse.com>
Wed, 27 Nov 2013 08:01:49 +0000 (09:01 +0100)
committerJan Beulich <jbeulich@suse.com>
Wed, 27 Nov 2013 08:01:49 +0000 (09:01 +0100)
commit5c447caaf49192c7b2c057ffbb565ce72aac666d
treed30e697f6cffdd92e28f2e539a5aa9c40a9bbacftree | snapshot
parent19f027cc5daff4a37fd0a28bca2514c721852dd0commit | diff
x86/HVM: only allow ring 0 guest code to make hypercalls

Anything else would allow for privilege escalation.

This is CVE-2013-4554 / XSA-76.

Signed-off-by: Jan Beulich <jbeulich@suse.com>
Acked-by: Ian Campbell <ian.campbell@citrix.com>
xen/arch/x86/hvm/hvm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.