]> xenbits.xensource.com Git - xen.git/commit
projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b7f93c6) | patch
x86/p2m: refuse new allocations for dying domains
authorRoger Pau Monné <roger.pau@citrix.com>
Tue, 11 Oct 2022 12:23:22 +0000 (14:23 +0200)
committerJan Beulich <jbeulich@suse.com>
Tue, 11 Oct 2022 12:23:22 +0000 (14:23 +0200)
commitff600a8cf8e36f8ecbffecf96a035952e022ab87
treea8b5688a4fc27ca9cec8f49d4dfdb59596c2eadetree
parentb7f93c6afb12b6061e2d19de2f39ea09b569ac68commit | diff
x86/p2m: refuse new allocations for dying domains

This will in particular prevent any attempts to add entries to the p2m,
once - in a subsequent change - non-root entries have been removed.

This is part of CVE-2022-33746 / XSA-410.

Signed-off-by: Roger Pau Monné <roger.pau@citrix.com>
Signed-off-by: Jan Beulich <jbeulich@suse.com>
Acked-by: Tim Deegan <tim@xen.org>
xen/arch/x86/mm/hap/hap.c diff | blob | blame | history
xen/arch/x86/mm/shadow/common.c diff | blob | blame | history
Xen (staging and unstable) mirror