]> xenbits.xensource.com Git - qemu-upstream-4.4-testing.git/commit
projects / qemu-upstream-4.4-testing.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d173a0c) | patch
xen: limit guest control of PCI command register
authorJan Beulich <jbeulich@suse.com>
Tue, 31 Mar 2015 13:58:04 +0000 (13:58 +0000)
committerStefano Stabellini <stefano.stabellini@eu.citrix.com>
Tue, 31 Mar 2015 14:08:59 +0000 (14:08 +0000)
commit32c5e5e70be80417ca21aa6e632a81f899ceead1
tree3db941872777317018d260f1ba1d03ea997f21b3tree
parentd173a0c20d7970c17fa593cf86abc1791a8a4a3acommit | diff
xen: limit guest control of PCI command register

Otherwise the guest can abuse that control to cause e.g. PCIe
Unsupported Request responses (by disabling memory and/or I/O decoding
and subsequently causing [CPU side] accesses to the respective address
ranges), which (depending on system configuration) may be fatal to the
host.

This is CVE-2015-2756 / XSA-126.

Signed-off-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
Acked-by: Ian Campbell <ian.campbell@citrix.com>
hw/xen/xen_pt.c diff | blob | history
hw/xen/xen_pt_config_init.c diff | blob | history
Obsolete Upstream Qemu based repository for xen-4.4-testing