github/acrn-hypervisor
1
0
Fork 0
mirror of https://github.com/projectacrn/acrn-hypervisor.git synced 2025-06-25 23:13:26 +00:00
Code Issues Projects Releases Wiki Activity

doc: update security advisory for 1.6.1 release

Browse Source 
Update mitigations for security vulnerabilities
 for ACRN 1.6.1 release

Signed-off-by: Yonghua Huang <yonghua.huang@intel.com>
Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
This commit is contained in:
Yonghua Huang 2020-05-07 20:55:15 +08:00 committed by David Kinder
parent 765e40bdb1
commit c4ab748cb9
1 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
doc/asa.rst
View File

@ -3,6 +3,22 @@
Security Advisory Security Advisory
################# #################
Addressed in ACRN v1.6.1
************************
We recommend that all developers upgrade to this v1.6.1 release (or later), which
addresses the following security issue that was discovered in previous releases:
------
- Service VM kernel Crashes When Fuzzing HC_ASSIGN_PCIDEV and HC_DEASSIGN_PCIDEV
NULL pointer dereference due to invalid address of PCI device to be assigned or
de-assigned may result in kernel crash. The return value of 'pci_find_bus()' shall
be validated before using in 'update_assigned_vf_state()'.
**Affected Release:** v1.6.
Addressed in ACRN v1.6 Addressed in ACRN v1.6
********************** **********************