xenbits.xensource.com Git - xen.git/commit

]> xenbits.xensource.com Git - xen.git/commit

author	Petr Matousek <pmatouse@redhat.com>
	Fri, 31 May 2013 10:28:18 +0000 (12:28 +0200)
committer	Jan Beulich <jbeulich@suse.com>
	Fri, 31 May 2013 10:28:18 +0000 (12:28 +0200)
commit	8dd9cde5d454e4cee55d0202abfd52ceeff1cd94
tree	efb5641e2e30582804d80fd879707c437719fa45	tree
parent	360d23bfb87588809719ecd3c319f8b514034a04	commit \| diff

libxc: limit cpu values when setting vcpu affinity

When support for pinning more than 64 cpus was added, check for cpu
out-of-range values was removed. This can lead to subsequent
out-of-bounds cpumap array accesses in case the cpu number is higher
than the actual count.

This patch returns the check.

This is CVE-2013-2072 / XSA-56

Signed-off-by: Petr Matousek <pmatouse@redhat.com>
master commit: 41abbadef60e5fccdfd688579dd458f7f7887cf5
master date: 2013-05-29 15:49:22 +0100

tools/python/xen/lowlevel/xc/xc.c

diff | blob | blame | history

Xen (staging and unstable) mirror

RSS Atom