Searched hist:"75 a87af9" (Results 1 – 1 of 1) sorted by relevance
| /openbmc/qemu/hw/i386/kvm/ |
| H A D | xen_evtchn.c | 75a87af9 Tue Jul 25 05:05:00 CDT 2023 David Woodhouse <dwmw@amazon.co.uk> hw/xen: prevent guest from binding loopback event channel to itself
Fuzzing showed that a guest could bind an interdomain port to itself, by
guessing the next port to be allocated and putting that as the 'remote'
port number. By chance, that works because the newly-allocated port has
type EVTCHNSTAT_unbound. It shouldn't.
Signed-off-by: David Woodhouse <dwmw@amazon.co.uk>
Reviewed-by: Paul Durrant <paul@xen.org>
Message-Id: <20230801175747.145906-4-dwmw2@infradead.org>
Signed-off-by: Philippe Mathieu-Daudé <philmd@linaro.org>
|