]> xenbits.xensource.com Git - qemu-xen-unstable.git/commit
projects / qemu-xen-unstable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a4b276b) | patch
xen: limit guest control of PCI command register
authorJan Beulich <jbeulich@suse.com>
Tue, 31 Mar 2015 15:27:45 +0000 (16:27 +0100)
committerIan Jackson <Ian.Jackson@eu.citrix.com>
Tue, 31 Mar 2015 15:27:45 +0000 (16:27 +0100)
commitab42b4408cb4fc4f869d73218e3d2034e6f5e8ac
tree76b55ee7408a1b55ac1a9e17ef23fe4ae1ca7a64tree
parenta4b276b4ce49c8d70dd841ff885b900ec652b994commit | diff
xen: limit guest control of PCI command register

Otherwise the guest can abuse that control to cause e.g. PCIe
Unsupported Request responses (by disabling memory and/or I/O decoding
and subsequently causing [CPU side] accesses to the respective address
ranges), which (depending on system configuration) may be fatal to the
host.

This is CVE-2015-2756 / XSA-126.

Signed-off-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
Acked-by: Ian Campbell <ian.campbell@citrix.com>
hw/pass-through.c diff | blob | blame | history
Unnamed repository; edit this file to name it for gitweb.