| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CA+icZUWHU=oXOEj5wHTzxrw_wj1w5hTvqq8Ry400s0ZCJjTEZw@mail.gmail.com>
Date: Thu, 19 Dec 2024 17:14:28 +0100
From: Sedat Dilek <sedat.dilek@...il.com>
To: Juergen Gross <jgross@...e.com>, Peter Zijlstra <peterz@...radead.org>,
Andrew Cooper <andrew.cooper3@...rix.com>, Sami Tolvanen <samitolvanen@...gle.com>
Cc: Jan Beulich <jbeulich@...e.com>, Josh Poimboeuf <jpoimboe@...hat.com>,
Linus Torvalds <torvalds@...ux-foundation.org>,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>, Sasha Levin <sashal@...nel.org>,
linux-kernel@...r.kernel.org, stable@...r.kernel.org,
Kees Cook <kees@...nel.org>, Nathan Chancellor <nathan@...nel.org>, llvm@...ts.linux.dev
Subject: [Linux-6.12.y] XEN: CVE-2024-53241 / XSA-466 and Clang-kCFI
Hi,
Linux v6.12.6 will include XEN CVE fixes from mainline.
Here, I use Debian/unstable AMD64 and the SLIM LLVM toolchain 19.1.x
from kernel.org.
What does it mean in ISSUE DESCRIPTION...
Furthermore, the hypercall page has no provision for Control-flow
Integrity schemes (e.g. kCFI/CET-IBT/FineIBT), and will simply
malfunction in such configurations.
...when someone uses Clang-kCFI?
My full kernel-config is attached.
Thanks in advance.
Best regards,
-Sedat-
https://xenbits.xen.org/xsa/advisory-466.html
https://www.phoronix.com/news/Xen-XSA-466-Linux
https://mirrors.edge.kernel.org/pub/tools/llvm/files/
Download attachment "config-6.12.5-1-amd64-clang19-kcfi" of type "application/octet-stream" (281153 bytes)
Powered by blists - more mailing lists