]> xenbits.xensource.com Git - qemu-upstream-unstable.git/commit
projects / qemu-upstream-unstable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 42ffdf3) | patch
xen: limit guest control of PCI command register
authorJan Beulich <jbeulich@suse.com>
Tue, 31 Mar 2015 13:58:04 +0000 (13:58 +0000)
committerStefano Stabellini <stefano.stabellini@eu.citrix.com>
Tue, 31 Mar 2015 13:58:04 +0000 (13:58 +0000)
commit727b998448e852a5e8eb570ac3a259ef62fbdacb
tree7408165ff532b1e44ab84327bd696a581f3d6238tree
parent42ffdf360dd9df66b0a4a7ada059c02a3cf3a8decommit | diff
xen: limit guest control of PCI command register

Otherwise the guest can abuse that control to cause e.g. PCIe
Unsupported Request responses (by disabling memory and/or I/O decoding
and subsequently causing [CPU side] accesses to the respective address
ranges), which (depending on system configuration) may be fatal to the
host.

This is CVE-2015-2756 / XSA-126.

Signed-off-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
Acked-by: Ian Campbell <ian.campbell@citrix.com>
hw/xen/xen_pt.c diff | blob | blame | history
hw/xen/xen_pt_config_init.c diff | blob | blame | history
Obsolete Upstream Qemu based repository for xen-unstable