[Buildroot] [PATCH-2017.02.x] xen: add upstream post-4.7.3 security fixes
Peter Korsgaard
peter at korsgaard.com
Tue Sep 19 11:57:30 UTC 2017
>>>>> "Alistair" == Alistair Francis <alistai at xilinx.com> writes:
>> -----Original Message-----
>> From: Peter Korsgaard [mailto:jacmet at gmail.com] On Behalf Of Peter
>> Korsgaard
>> Sent: Monday, September 18, 2017 8:49 AM
>> To: buildroot at buildroot.org
>> Cc: Alistair Francis <alistai at xilinx.com>; Peter Korsgaard
>> <peter at korsgaard.com>
>> Subject: [PATCH-2017.02.x] xen: add upstream post-4.7.3 security fixes
>>
>> Fixes the following security issues:
>>
>> XSA-226: multiple problems with transitive grants (CVE-2017-12135)
>> XSA-227: x86: PV privilege escalation via map_grant_ref (CVE-2017-12137)
>> XSA-228: grant_table: Race conditions with maptrack free list handling
>> (CVE-2017-12136)
>> XSA-230: grant_table: possibly premature clearing of GTF_writing /
>> GTF_reading (CVE-2017-12855)
>> XSA-231: Missing NUMA node parameter verification (CVE-2017-14316)
>> XSA-232: Missing check for grant table (CVE-2017-14318)
>> XSA-233: cxenstored: Race in domain cleanup (CVE-2017-14317)
>> XSA-234: insufficient grant unmapping checks for x86 PV guests
>> (CVE-2017-14319)
>> XSA-235: add-to-physmap error paths fail to release lock on ARM
>>
>> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
> Sorry for the weird email format.
> This patch looks good to me.
> Reviewed-by: Alistair Francis <alistair.francis at xilinx.com>
Committed to 2017.02.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list