Bug 221239
Summary: | Use of domain_crash_synchronous in illegal contexts | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Herbert Xu <herbert.xu> | ||||||
Component: | kernel-xen | Assignee: | Herbert Xu <herbert.xu> | ||||||
Status: | CLOSED CURRENTRELEASE | QA Contact: | |||||||
Severity: | high | Docs Contact: | |||||||
Priority: | medium | ||||||||
Version: | 5.0 | CC: | dzickus, security-response-team, xen-maint | ||||||
Target Milestone: | --- | Keywords: | Security | ||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | impact=important,source=redhat,reported=20070103,public=20070103 | ||||||||
Fixed In Version: | 5.0.0 | Doc Type: | Bug Fix | ||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2007-01-26 21:30:52 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Bug Depends On: | |||||||||
Bug Blocks: | 222058 | ||||||||
Attachments: |
|
Description
Herbert Xu
2007-01-03 06:07:49 UTC
Created attachment 144684 [details]
[XEN] Get rid of many uses of domain_crash_synchronous().
Justification: security bug, HVM guests could shut down the host by performing illegal operations. The patch has already been posted to virtualist@ and rhkernel-list@. Don, please apply the patch once it has received the ACKs required. QE ack for RHEL5. While trying to reproduce bug 222058 here, I unwittingly kept reproducing this bug instead. Highly annoying to have the host crash 3 times in a row :) Herbert - Please quantify the security implications here for not having this in RC. Rik, do you have a crash dump for this? Brian, I've done an audit of all the domain_crash_synchronous() calls in RHEL5. As a result we only need a subset of this patch. However, there are a number of other similar patches which we need to pull instead. I'll post them today. Created attachment 145332 [details]
Replace inappropriate calls to domain_crash_synchronous
QE ack for RHEL5. in 2.6.18-1.3014.el5 2.6.9-7.el5 included in 20070125.0. |