Changes made to bug 813428

Back to bug 813428

Who	When	What	Removed	Added
Petr Matousek	2012-04-17 18:30:11 UTC	CC		agordeev, anton, dhoward, jarod, lwang, plougher, sforsber, xen-maint
Petr Matousek	2012-04-17 18:38:32 UTC	Whiteboard	public=20120501,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected	impact=important,public=20120501,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected
Petr Matousek	2012-04-17 18:39:22 UTC	Depends On		813430
Petr Matousek	2012-04-17 18:39:35 UTC	Depends On		813431
Petr Matousek	2012-04-17 18:43:00 UTC	CC		dlaor, drjones, imammedo, lersek, pbonzini
Petr Matousek	2012-04-17 18:50:52 UTC	Blocks		813442
Petr Matousek	2012-04-18 17:33:28 UTC	Flags		needinfo?(pbonzini)
Paolo Bonzini	2012-04-18 18:33:43 UTC	Flags	needinfo?(pbonzini)
Paolo Bonzini	2012-04-18 18:46:36 UTC	Depends On		813908
Andrew Jones	2012-04-19 06:41:07 UTC	CC		mrezanin
Lei Wang	2012-04-19 15:11:13 UTC	CC		leiwang, qguan, qwan
Andrew Jones	2012-04-20 18:12:54 UTC	Status	NEW	POST
Petr Matousek	2012-04-20 19:05:02 UTC	Status	POST	NEW
Petr Matousek	2012-04-23 12:39:57 UTC	Depends On	813908
Petr Matousek	2012-04-23 17:16:44 UTC	Blocks		815484
Ramon de C Valle	2012-04-26 15:55:17 UTC	CC		rcvalle
Ramon de C Valle	2012-04-26 15:55:17 UTC	Whiteboard	impact=important,public=20120501,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected	impact=important,public=20120501,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected,cwe=CWE-119
Petr Matousek	2012-04-30 09:07:46 UTC	Whiteboard	impact=important,public=20120501,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected,cwe=CWE-119	impact=important,public=20120501,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119
Petr Matousek	2012-04-30 09:10:04 UTC	Depends On		817489
Mark J. Cox	2012-04-30 18:06:53 UTC	CC		mjc
Mark J. Cox	2012-05-01 06:41:43 UTC	Whiteboard	impact=important,public=20120501,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119	impact=important,public=20120531,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119
Mark J. Cox	2012-05-02 08:01:22 UTC	Whiteboard	impact=important,public=20120531,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119	impact=important,public=20120601,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119
Mark J. Cox	2012-05-03 09:55:02 UTC	Whiteboard	impact=important,public=20120601,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119	impact=important,public=20120612,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119
Petr Matousek	2012-05-03 17:57:47 UTC	CC		ddugger
Petr Matousek	2012-05-09 15:09:13 UTC	CC		knoel
Mohua Li	2012-06-05 09:20:53 UTC	CC		moli
Petr Matousek	2012-06-11 11:24:24 UTC	Blocks		823418
Jan Lieskovsky	2012-06-12 12:07:20 UTC	Group	security, qe_staff
		CC		jlieskov
		Summary	EMBARGOED CVE-2012-0217 kernel: x86-64: avoid sysret to non-canonical address	CVE-2012-0217 kernel: x86-64: avoid sysret to non-canonical address
Kirill Korotaev	2012-06-13 08:08:52 UTC	CC		dev
R P Herrold	2012-06-14 15:15:31 UTC	CC		herrold
Mark J. Cox	2012-06-15 14:25:40 UTC	Whiteboard	impact=important,public=20120612,reported=20120417,source=rt,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119	impact=important,public=20120612,reported=20120417,source=xen,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119
Ramon de C Valle	2012-07-18 00:21:51 UTC	Whiteboard	impact=important,public=20120612,reported=20120417,source=xen,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected,cwe=CWE-119	impact=important,public=20120612,reported=20120417,source=xen,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected rhel-5.6.z/kernel-xen=affected
Simon Green	2013-01-10 00:52:42 UTC	CC	dlaor	tburke
Simon Green	2013-04-30 23:17:37 UTC	CC	moli
Simon Green	2013-07-29 01:36:39 UTC	CC	qguan
John Skeoch	2013-10-14 23:35:15 UTC	CC	rcvalle	bressers
John Skeoch	2014-06-18 08:04:42 UTC	CC	anton	nobody
John Skeoch	2014-07-25 03:23:43 UTC	CC	ddugger
Don Bayly	2014-08-06 15:30:07 UTC	CC		ddugger
Petr Matousek	2014-08-06 15:37:24 UTC	Status	NEW	CLOSED
		Resolution	---	ERRATA
		Last Closed		2014-08-06 11:37:24 UTC
Martin Prpič	2014-09-02 13:40:42 UTC	Doc Text		It was found that the Xen hypervisor implementation as shipped with Red Hat Enterprise Linux 5 did not properly restrict the syscall return addresses in the sysret return path to canonical addresses. An unprivileged user in a 64-bit para-virtualized guest, that is running on a 64-bit host that has an Intel CPU, could use this flaw to crash the host or, potentially, escalate their privileges, allowing them to execute arbitrary code at the hypervisor level.
Jarod Wilson	2015-02-16 15:44:32 UTC	CC	jarod
Ján Rusnačko	2015-08-19 09:15:35 UTC	Severity	medium	high
Ján Rusnačko	2015-08-19 09:15:39 UTC	Priority	medium	high
Product Security DevOps Team	2019-09-29 12:52:21 UTC	Whiteboard	impact=important,public=20120612,reported=20120417,source=xen,cvss2=7.9/AV:A/AC:M/Au:N/C:C/I:C/A:C,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,mrg-2/realtime-kernel=notaffected,fedora-all/kernel=notaffected,rhel-5/kernel-xen=affected,rhel-5.6.z/kernel-xen=affected

Back to bug 813428