This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


Re: [Xen-users] has CVE-2010-3081 been patched in the xen.org kernels?

To: "Luke S Crawford" <lsc@xxxxxxxxx>
Subject: Re: [Xen-users] has CVE-2010-3081 been patched in the xen.org kernels?
From: "Matthew Law" <matt@xxxxxxxxxxxxxxxxxx>
Date: Thu, 30 Sep 2010 10:19:04 +0100
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Thu, 30 Sep 2010 02:21:03 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
Importance: Normal
In-reply-to: <m3zkv2xbto.fsf@xxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <m3zkv2xbto.fsf@xxxxxxxxxxxxxxxxxx>
Reply-to: matt@xxxxxxxxxxxxxxxxxx
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: SquirrelMail/1.4.19
On Tue, September 28, 2010 2:00 pm, Luke S Crawford wrote:
> there's lots of talk of the Ac1db1tch3z exploit.   has this been pached
> in the xen.org dom0 kernels?  the xcp kernels?   I've been using the
> /proc/sys/fs/binfmt_misc/register  workaround but it'd be better to
> properly
> upgrade everything.

Sorry if this has already been covered but for those who use CentOS-based
dom0s I noticed the latest kernel has the fix as does RHEL.  We use centos
and gitco xen rpms so we should be OK now (fingers and toes crossed!).



Xen-users mailing list

<Prev in Thread] Current Thread [Next in Thread>