aboutsummaryrefslogtreecommitdiffstats
path: root/main/xen/xsa66.patch
diff options
context:
space:
mode:
Diffstat (limited to 'main/xen/xsa66.patch')
-rw-r--r--main/xen/xsa66.patch23
1 files changed, 23 insertions, 0 deletions
diff --git a/main/xen/xsa66.patch b/main/xen/xsa66.patch
new file mode 100644
index 0000000000..1d9f25abae
--- /dev/null
+++ b/main/xen/xsa66.patch
@@ -0,0 +1,23 @@
+x86: properly set up fbld emulation operand address
+
+This is CVE-2013-4361 / XSA-66.
+
+Signed-off-by: Jan Beulich <jbeulich@suse.com>
+Acked-by: Ian Jackson <ian.jackson@eu.citrix.com>
+
+--- a/xen/arch/x86/x86_emulate/x86_emulate.c
++++ b/xen/arch/x86/x86_emulate/x86_emulate.c
+@@ -3156,11 +3156,11 @@ x86_emulate(
+ break;
+ case 4: /* fbld m80dec */
+ ea.bytes = 10;
+- dst = ea;
++ src = ea;
+ if ( (rc = ops->read(src.mem.seg, src.mem.off,
+ &src.val, src.bytes, ctxt)) != 0 )
+ goto done;
+- emulate_fpu_insn_memdst("fbld", src.val);
++ emulate_fpu_insn_memsrc("fbld", src.val);
+ break;
+ case 5: /* fild m64i */
+ ea.bytes = 8;
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-06 18:32:18 +0000