diff options
| author | Baptiste Daroussin <bapt@FreeBSD.org> | 2015-06-11 18:26:45 +0000 |
|---|---|---|
| committer | Baptiste Daroussin <bapt@FreeBSD.org> | 2015-06-11 18:26:45 +0000 |
| commit | 03196bcbc3ea90f9c6c7f64e7d8ae4f158bcd67f (patch) | |
| tree | f6acc8779f63852063ca0c68590979f8a80f8f2d /sysutils/xen-tools/files/xsa131-qemuu-5.patch | |
| parent | Upgrade to 0.3.5. (diff) | |
Fix multiple security issues Remove previous XSA-133 fix for consistency
Security: XSA-119 / CVE-2015-2152
Security: XSA-125 / CVE-2015-2752
Security: XSA-126 / CVE-2015-2756
Security: XSA-128 / CVE-2015-4103
Security: XSA-129 / CVE-2015-4104
Security: XSA-130 / CVE-2015-4105
Security: XSA-131 / CVE-2015-4106
Security: XSA-133 / CVE-2015-3456
Security: XSA-135 / CVE-2015-3209
Diffstat (limited to 'sysutils/xen-tools/files/xsa131-qemuu-5.patch')
| -rw-r--r-- | sysutils/xen-tools/files/xsa131-qemuu-5.patch | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/sysutils/xen-tools/files/xsa131-qemuu-5.patch b/sysutils/xen-tools/files/xsa131-qemuu-5.patch new file mode 100644 index 000000000000..aed87c638a95 --- /dev/null +++ b/sysutils/xen-tools/files/xsa131-qemuu-5.patch @@ -0,0 +1,22 @@ +xen/pt: mark all PCIe capability bits read-only + +xen_pt_emu_reg_pcie[]'s PCI_EXP_DEVCAP needs to cover all bits as read- +only to avoid unintended write-back (just a precaution, the field ought +to be read-only in hardware). + +This is a preparatory patch for XSA-131. + +Signed-off-by: Jan Beulich <jbeulich@suse.com> +Reviewed-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com> + +--- a/hw/xen/xen_pt_config_init.c ++++ b/hw/xen/xen_pt_config_init.c +@@ -873,7 +873,7 @@ static XenPTRegInfo xen_pt_emu_reg_pcie[ + .offset = PCI_EXP_DEVCAP, + .size = 4, + .init_val = 0x00000000, +- .ro_mask = 0x1FFCFFFF, ++ .ro_mask = 0xFFFFFFFF, + .emu_mask = 0x10000000, + .init = xen_pt_common_reg_init, + .u.dw.read = xen_pt_long_reg_read, |