| Summary: | app-emulation/xen CR4 TSC and DR7 DoS (CVE-2007-{5907,5906}) | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED FIXED | ||
| Severity: | trivial | CC: | lars, xen |
| Priority: | High | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | http://secunia.com/advisories/28405/ | ||
| Whiteboard: | ~3 [noglsa] | ||
| Package list: | Runtime testing required: | --- | |
|
Description
Robert Buchholz (RETIRED)
2007-11-12 23:39:12 UTC
xen, please advise :-) CVE-2007-5906 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5906): Xen 3.1.1 allows virtual guest system users to cause a denial of service (hypervisor crash) by using a debug register (DR7) to set certain breakpoints. Xen 3.1.2 has been released and include the debug register fix, I will have it in the portage tree soon. As for the TSC issue, the patch "x86: allow pv guests to disable TSC for applications" was only committed to the unstable branch (will be xen 3.2) and not included in 3.1.2. I'm not sure why. The provided patch does not apply to the 3.1.2 branch either. xen-3.1.2 now in portage, but still waiting for 3.2 series to fix the other issue. *** Bug 205206 has been marked as a duplicate of this bug. *** (In reply to comment #4) > xen-3.1.2 now in portage, but still waiting for 3.2 series to fix the other > issue. > xen herd: 3.2 is now in portage, does it include the fix? (In reply to comment #6) > (In reply to comment #4) > > xen-3.1.2 now in portage, but still waiting for 3.2 series to fix the other > > issue. > > > > xen herd: 3.2 is now in portage, does it include the fix? > Oops, forgot to comment on this. Yes it includes the fix. Thanks, closing then. |