* SYSRET 64-Bit Breakout
@ 2012-06-13 12:26 Clark, Robert Graham
2012-06-13 12:42 ` Avi Kivity
2012-06-13 14:59 ` Paolo Bonzini
0 siblings, 2 replies; 3+ messages in thread
From: Clark, Robert Graham @ 2012-06-13 12:26 UTC (permalink / raw)
To: kvm@vger.kernel.org
All,
I've been looking at http://www.kb.cert.org/vuls/id/649219
Xen appears to be vulnerable as do a number of other products. KVM isn't listed. Some discussion on IRC indicates that KVM isn't likely to be vulnerable.
Can anyone confirm please?
-Rob
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: SYSRET 64-Bit Breakout
2012-06-13 12:26 SYSRET 64-Bit Breakout Clark, Robert Graham
@ 2012-06-13 12:42 ` Avi Kivity
2012-06-13 14:59 ` Paolo Bonzini
1 sibling, 0 replies; 3+ messages in thread
From: Avi Kivity @ 2012-06-13 12:42 UTC (permalink / raw)
To: Clark, Robert Graham; +Cc: kvm@vger.kernel.org
On 06/13/2012 03:26 PM, Clark, Robert Graham wrote:
> All,
>
> I've been looking at http://www.kb.cert.org/vuls/id/649219
>
> Xen appears to be vulnerable as do a number of other products. KVM isn't listed. Some discussion on IRC indicates that KVM isn't likely to be vulnerable.
>
> Can anyone confirm please?
KVM is not vulnerable to this exploit.
--
error compiling committee.c: too many arguments to function
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: SYSRET 64-Bit Breakout
2012-06-13 12:26 SYSRET 64-Bit Breakout Clark, Robert Graham
2012-06-13 12:42 ` Avi Kivity
@ 2012-06-13 14:59 ` Paolo Bonzini
1 sibling, 0 replies; 3+ messages in thread
From: Paolo Bonzini @ 2012-06-13 14:59 UTC (permalink / raw)
To: Clark, Robert Graham; +Cc: kvm@vger.kernel.org
Il 13/06/2012 14:26, Clark, Robert Graham ha scritto:
> All,
>
> I've been looking at http://www.kb.cert.org/vuls/id/649219
>
> Xen appears to be vulnerable as do a number of other products. KVM
> isn't listed. Some discussion on IRC indicates that KVM isn't likely to
> be vulnerable.
>
> Can anyone confirm please?
Xen is only vulnerable with paravirtualized guests. KVM only support
hardware-assisted virtualization.
The Linux kernel that is used by KVM used to have similar
vulnerabilities, but they were fixed a long time ago (CVE-2005-1764,
CVE-2006-0744).
Paolo
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2012-06-13 15:00 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-06-13 12:26 SYSRET 64-Bit Breakout Clark, Robert Graham
2012-06-13 12:42 ` Avi Kivity
2012-06-13 14:59 ` Paolo Bonzini
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox