WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Xen-devel] xen-stable vs. xen-testing

from [Derek Glidden] [Permanent Link][Original]
To: xen-devel@xxxxxxxxxxxxxxxxxxxxx
Subject: [Xen-devel] xen-stable vs. xen-testing
From: Derek Glidden <dglidden@xxxxxxxxxxxxxxx>
Date: Mon, 10 Jan 2005 15:11:46 -0500
Delivery-date: Mon, 10 Jan 2005 22:34:15 +0000
Envelope-to: xen+James.Bulpin@xxxxxxxxxxxx
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla Thunderbird 1.0 (X11/20041206)
So given the recent announcement of the linux local-privilege-escalation I want to upgrade my Xen box/VM to the latest kernel. I see that the xen-2.0 tree still has 2.6.9 and xen-testing has 2.6.10 patches. So I have a few questions: 

a) how stable is "testing" really?
b) can I just build new kernels from the -testing tree or should I build the Xen VMM as well?
c) do any of the Xen folks track BUGTRAQ or anything to keep up on potential kernel-level bugs that should be addressed relatively quickly? Granted, I don't think I've seen a legitimate linux kernel exploit in like four or five years now, but should another one pop up and I do track security lists would it be worth my effort to relay the info to the xen-list?
d) I realize that Xen is really still R&D for the most part, but how do the Xen team feel about security issues like this? 


-------------------------------------------------------
The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-devel] XenSource Inc., Ian Pratt
Next by Date:  [Xen-devel] company, Tim Freeman
Previous by Thread:  [Xen-devel] XenSource Inc., Ian Pratt
Next by Thread:  Re: [Xen-devel] xen-stable vs. xen-testing, Mark Williamson
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy