Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-Id: <201404302023.s3UKMrEx008342@linus.mitre.org>
Date: Wed, 30 Apr 2014 16:22:53 -0400 (EDT)
From: cve-assign@...re.org
To: security@....org
Cc: cve-assign@...re.org, oss-security@...ts.openwall.com
Subject: Re: Xen Security Advisory 91 - Hardware timer context is not properly context switched on ARM

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> XSA-91

> Xen was not context switching the CNTKCTL_EL1 register ... This meant
> that any guest can reconfigure these settings for the entire system
> ... may lead to a kernel crash ... also be able to read the current
> timestamp value for the domain perhaps leaking information

Use CVE-2014-3125.

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (SunOS)

iQEcBAEBAgAGBQJTYVs9AAoJEKllVAevmvmsoN4IAImkrYCRsGux5OqDa7FzzBP3
1EfhhgbtpzLIFT1I7wKUFc+PDuUGGp7cO88sJkNuaMpRTYtRRyZBIIs7hNxlAi/p
yumEmhPE6lWy879xCB9zDqXNaJneIm/iGZwm2H583xuZNhx/iuNxHOuxVCOaZo8x
mehNxUVAu0U3aKogN+Z3/AMyx6ffh0o7ASK21tO5JYOEGzv9iUW1tBLOiKI3bGJE
Yv62vJ+iu60tIoLw+80o08fjT7cGQ+Dl8XOh2r5bwMscNWYE90xrJ2tKYkGDpfrS
GXsEm5BKNuscE9OyLqjl/bEjf0/RxWeuILHfit9Qr8KXwypS4WXbPhbWXJWceeU=
=JCXD
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.