* Re: CVE-2021-47574: xen/netfront: harden netfront against event channel storms
[not found] <2024061914-CVE-2021-47574-18b4@gregkh>
@ 2024-06-20 7:54 ` Juergen Gross
0 siblings, 0 replies; only message in thread
From: Juergen Gross @ 2024-06-20 7:54 UTC (permalink / raw)
To: cve, linux-kernel; +Cc: Greg Kroah-Hartman, security@xenproject.org
[-- Attachment #1.1.1: Type: text/plain, Size: 738 bytes --]
On 19.06.24 16:54, Greg Kroah-Hartman wrote:
> Description
> ===========
>
> In the Linux kernel, the following vulnerability has been resolved:
>
> xen/netfront: harden netfront against event channel storms
>
> The Xen netfront driver is still vulnerable for an attack via excessive
> number of events sent by the backend. Fix that by using lateeoi event
> channels.
>
> For being able to detect the case of no rx responses being added while
> the carrier is down a new lock is needed in order to update and test
> rsp_cons and the number of seen unconsumed responses atomically.
>
> This is part of XSA-391
When issuing XSA-391 the Xen security team already assigned CVE-2021-28712
to this issue.
Juergen
[-- Attachment #1.1.2: OpenPGP public key --]
[-- Type: application/pgp-keys, Size: 3743 bytes --]
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 495 bytes --]
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2024-06-20 7:54 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <2024061914-CVE-2021-47574-18b4@gregkh>
2024-06-20 7:54 ` CVE-2021-47574: xen/netfront: harden netfront against event channel storms Juergen Gross
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox