projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7eb21b6) | patch
xen: add upstream post-4.9.0 security fixes
authorPeter Korsgaard <peter@korsgaard.com>
Tue, 19 Sep 2017 15:03:14 +0000 (17:03 +0200)
committerArnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Tue, 19 Sep 2017 19:44:28 +0000 (21:44 +0200)
commit304c93cdfbb588bf339e6a7402f3e882a4d088d3
tree82596a55c0066442f91a2c5af915471805b94e1ctree
parent7eb21b66cf53872d19e3dea097bef64793173b1ecommit | diff
xen: add upstream post-4.9.0 security fixes

Fixes the following security issues:

XSA-226: multiple problems with transitive grants (CVE-2017-12135)
XSA-227: x86: PV privilege escalation via map_grant_ref (CVE-2017-12137)
XSA-228: grant_table: Race conditions with maptrack free list handling
         (CVE-2017-12136)
XSA-230: grant_table: possibly premature clearing of GTF_writing /
         GTF_reading (CVE-2017-12855)
XSA-231: Missing NUMA node parameter verification (CVE-2017-14316)
XSA-232: Missing check for grant table (CVE-2017-14318)
XSA-233: cxenstored: Race in domain cleanup (CVE-2017-14317)
XSA-234: insufficient grant unmapping checks for x86 PV guests
         (CVE-2017-14319)
XSA-235: add-to-physmap error paths fail to release lock on ARM

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Reviewed-by: Alistair Francis <alistair.francis@xilinx.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
package/xen/xen.hash diff | blob | history
package/xen/xen.mk diff | blob | history