On Thu, 21 Feb 2019 09:25:46 +0000 Daniel P. Berrangé <berra...@redhat.com> wrote:
> On Tue, Feb 19, 2019 at 01:55:01PM +1100, David Gibson wrote: > > On Mon, Feb 18, 2019 at 11:43:49PM +0530, P J P wrote: > > > From: Prasad J Pandit <p...@fedoraproject.org> > > > > > > On ppc hosts, hypervisor shares following system attributes > > > > > > - /proc/device-tree/system-id > > > - /proc/device-tree/model > > > > > > with a guest. This could lead to information leakage and misuse.[*] > > > Add machine attributes to control such system information exposure > > > to a guest. > > > > > > [*] https://wiki.openstack.org/wiki/OSSN/OSSN-0028 > > > > > > Reported-by: Daniel P. Berrangé <berra...@redhat.com> > > > Fix-suggested-by: Daniel P. Berrangé <berra...@redhat.com> > > > Signed-off-by: Prasad J Pandit <p...@fedoraproject.org> > > > > Applied to ppc-for-4.0, thanks. > > Could you add the word "CVE-2019-8934" to the commit message for this > patch before sending a pulll request - either end of subject line, or > just before the Reported-by line. > While here, please add my R-b tag as well: Reviewed-by: Greg Kurz <gr...@kaod.org> > Regards, > Daniel