Hi Juergen, On 20/07/2023 16:04, Juergen Gross wrote:
The fix for XSA-417 had a bug: domain_alloc_permrefs() will not return a negative value in case of an error, but a plain errno value.Note this is not considered to be a security issue, as the only case where domain_alloc_permrefs() will return an error is a failed memory allocation. As a guest should not be able to drive Xenstore out of memory, this is NOT a problem a guest can trigger at will. Fixes: ab128218225d ("tools/xenstore: fix checking node permissions") Signed-off-by: Juergen Gross <[email protected]>
Acked-by: Julien Grall <[email protected]> Cheers, -- Julien Grall
