* Zachary Amsden ([email protected]) wrote:
> I think so too. I merely moved the code here and didn't notice it in
> all this excitement.
>
> 0x00cf9a000xff306600 =>
>
> Present CPL-0 32-bit code segment, base 0x0000ff30, limit 0xf6601 pages,
> for which desc_empty(desc) is true.
>
> Thankfully, this is not used as a security check, but it can falsely
> overwrite TLS segments with carefully chosen base / limits. I do not
> believe this is an issue in practice, but it is a kernel bug.
>
> Nice catch. Looks like it affects all 2.6.X kernels.
Thanks, I added this to virt tree, and will push baseline fix up.
thanks,
-chris
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
| |
 |