[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] PATCH: CVE-2007-0998: Remove access to QEMU monitor in VNC server

On 19/5/07 00:39, "S.ÃaÄlar Onur" <caglar@xxxxxxxxxxxxx> wrote:

> 19 Mar 2007 Pts tarihinde, Daniel P. Berrange ÅunlarÄ yazmÄÅtÄ:
>> This patch fixes a security issue present in any Xen 3.0.3 or later when
>> the VNC server is enabled for a HVM guest.
>> cf CVE-2007-0998 / the RHEL-5 security errata:
>>    http://rhn.redhat.com/errata/RHSA-2007-0114.html
> Same patch applies cleanly on Xen-3.1.0, is it forgetton?

The patch is in 3.1.0.

 -- Keir

Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.