WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] are Xen 3.1.0 kernels CVE-2007-4573 vulnerable

from [Mark Williamson] [Permanent Link][Original]
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] are Xen 3.1.0 kernels CVE-2007-4573 vulnerable
From: Mark Williamson <mark.williamson@xxxxxxxxxxxx>
Date: Fri, 5 Oct 2007 03:01:19 +0100
Cc: caglar@xxxxxxxxxxxxx, Itamar Reis Peixoto <itamar@xxxxxxxxxxxxxxxx>
Delivery-date: Thu, 04 Oct 2007 19:02:37 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <000e01c80517$4cb5f900$fe01a8c0@ispbrasil>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <Pine.LNX.4.64.0710011215020.7452@xxxxxxxxxxxxxxxxx> <200710022352.13640.caglar@xxxxxxxxxxxxx> <000e01c80517$4cb5f900$fe01a8c0@ispbrasil>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.9.6 
> I am happy with the fedora devel / rawhide xen packages (he have the lasted
> kernel)
>
> but I dont know if is vulnerable.
>
>
> I don't know if is possible to use a 2.6.18 dom0 and a 2.6.23 xenU kernel ,
> I belive should be possible in 32 bit systems, can anyone test this ?

That should work fine.

In general you can expect newer xenU kernels to run on older Xen, so long as 
they include compatibility with older Xen releases.  The dom0 kernel version 
shouldn't really matter much these days, since Xen and the tools can be 
upgraded independently of it.

Cheers,
Mark

>
>
> --------------------
>
> Itamar Reis Peixoto
>
> e-mail/msn: itamar@xxxxxxxxxxxxxxxx
> skype: itamarjp
> icq: 81053601
> +55 11 4063 5033
> ----- Original Message -----
> From: "S.Çağlar Onur" <caglar@xxxxxxxxxxxxx>
> To: <xen-users@xxxxxxxxxxxxxxxxxxx>
> Sent: Tuesday, October 02, 2007 5:52 PM
> Subject: Re: [Xen-users] are Xen 3.1.0 kernels CVE-2007-4573 vulnerable
>
> > _______________________________________________
> > Xen-users mailing list
> > Xen-users@xxxxxxxxxxxxxxxxxxx
> > http://lists.xensource.com/xen-users
>
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users



-- 
Dave: Just a question. What use is a unicyle with no seat?  And no pedals!
Mark: To answer a question with a question: What use is a skateboard?
Dave: Skateboards have wheels.
Mark: My wheel has a wheel!

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] Tainted kernel module?, Mark Williamson
Next by Date:  Re: [Xen-users] are Xen 3.1.0 kernels CVE-2007-4573 vulnerable, Mark Williamson
Previous by Thread:  Re: [Xen-users] are Xen 3.1.0 kernels CVE-2007-4573 vulnerable, Itamar Reis Peixoto
Next by Thread:  Re: [Xen-users] are Xen 3.1.0 kernels CVE-2007-4573 vulnerable, Steven Timm
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy