]> xenbits.xensource.com Git - qemu-upstream-4.3-testing.git/commit
projects / qemu-upstream-4.3-testing.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ab689a8) | patch
xen: limit guest control of PCI command register
authorJan Beulich <jbeulich@suse.com>
Tue, 31 Mar 2015 14:14:36 +0000 (14:14 +0000)
committerStefano Stabellini <stefano.stabellini@eu.citrix.com>
Tue, 31 Mar 2015 14:14:36 +0000 (14:14 +0000)
commit7f34050dc014ae8f4078d48aec97ec6553151bf2
tree11c6d484734e64c35f8e5ac553644b66db319d32tree
parentab689a89ec47b2e1c964c57bea7da68f8ddf89fdcommit | diff
xen: limit guest control of PCI command register

Otherwise the guest can abuse that control to cause e.g. PCIe
Unsupported Request responses (by disabling memory and/or I/O decoding
and subsequently causing [CPU side] accesses to the respective address
ranges), which (depending on system configuration) may be fatal to the
host.

This is CVE-2015-2756 / XSA-126.

Signed-off-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
Acked-by: Ian Campbell <ian.campbell@citrix.com>
hw/xen_pt.c diff | blob | history
hw/xen_pt_config_init.c diff | blob | history
Obsolete Upstream Qemu based repository for xen-unstable